CVE-2018-25095

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

T

he Duplicator WordPress plugin before 1.3.0 does not properly escape values when its installer script replaces values in WordPress configuration files. If this installer script is left on the site after use, it could be use to run arbitrary code on the server.

References

Link	Resource
https://wpscan.com/vulnerability/16cc47aa-cb31-4114-b014-7ac5fbc1d3ee	Exploit Third Party Advisory
https://wpscan.com/vulnerability/16cc47aa-cb31-4114-b014-7ac5fbc1d3ee	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:awesomemotive:duplicator:*:*:*:*:lite:wordpress:*:*

History

02 Feb 2026, 15:06

Type	Values Removed	Values Added
First Time		Awesomemotive Awesomemotive duplicator
CPE	cpe:2.3:a:snapcreek:duplicator:::::lite:wordpress::	cpe:2.3:a:awesomemotive:duplicator:::::lite:wordpress::

21 Nov 2024, 04:03

Type	Values Removed	Values Added
References	~~() https://wpscan.com/vulnerability/16cc47aa-cb31-4114-b014-7ac5fbc1d3ee - Exploit, Third Party Advisory~~	() https://wpscan.com/vulnerability/16cc47aa-cb31-4114-b014-7ac5fbc1d3ee - Exploit, Third Party Advisory

Information

Published : 2024-01-08 19:15

Updated : 2026-02-02 15:06

NVD link : CVE-2018-25095

Mitre link : CVE-2018-25095

CVE.ORG link : CVE-2018-25095

JSON object : View

Products Affected

awesomemotive

duplicator

CWE

NVD-CWE-noinfo

{"id": "CVE-2018-25095", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2024-01-08T19:15:08.377", "references": [{"url": "https://wpscan.com/vulnerability/16cc47aa-cb31-4114-b014-7ac5fbc1d3ee", "tags": ["Exploit", "Third Party Advisory"], "source": "[email protected]"}, {"url": "https://wpscan.com/vulnerability/16cc47aa-cb31-4114-b014-7ac5fbc1d3ee", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "The Duplicator WordPress plugin before 1.3.0 does not properly escape values when its installer script replaces values in WordPress configuration files. If this installer script is left on the site after use, it could be use to run arbitrary code on the server."}, {"lang": "es", "value": "El complemento Duplicator de WordPress anterior a 1.3.0 no escapa correctamente de los valores cuando su script de instalaci\u00f3n reemplaza los valores en los archivos de configuraci\u00f3n de WordPress. Si este script de instalaci\u00f3n se deja en el sitio despu\u00e9s de su uso, podr\u00eda usarse para ejecutar c\u00f3digo arbitrario en el servidor."}], "lastModified": "2026-02-02T15:06:20.273", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:awesomemotive:duplicator:*:*:*:*:lite:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "DE321850-7FD6-4E6E-84BD-8D3039395A14", "versionEndExcluding": "1.3.0"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}