WordPress Plugin Duplicator-WordPress Migration Arbitrary File Download - CVE-2020-11738 - Vulnerability Database

WordPress Plugin Duplicator-WordPress Migration Arbitrary File Download - CVE-2020-11738

High
Reference: CVE-2020-11738
Title: WordPress Plugin Duplicator-WordPress Migration Arbitrary File Download
Overview:

WordPress Plugin Duplicator-WordPress Migration is prone to a vulnerability that lets attackers download arbitrary files because the application fails to sufficiently verify user-supplied input. This may allow an attacker to gain access to sensitive information which may aid in launching further attacks. WordPress Plugin Duplicator-WordPress Migration version 1.3.26 is vulnerable prior versions may also be affected.