This is a summary of the AI-generated 10-question deep analysis. The full version (longer answers, follow-up Q&A, related CVEs) requires login. Read the full analysis β
Q1What is this vulnerability? (Essence + Consequences)
π¨ **Essence**: Snap Creek Duplicator < 1.2.42 has a critical flaw. π **Consequences**: Attackers inject PHP code into `wp-config.php` via leftover installer files.β¦
π‘οΈ **Root Cause**: Insecure handling of leftover installation artifacts. π **Flaw**: Access to `installer.php` and `installer-backup.php` allows input manipulation during DB setup.β¦
π― **Target**: WordPress sites using Snap Creek Duplicator. π¦ **Affected Versions**: All versions **before 1.2.42**. π« **Fixed**: Version 1.2.42 and later are safe.
Q4What can hackers do? (Privileges/Data)
π **Privileges**: Full control via RCE. πΎ **Data**: Can read/write any file, execute system commands, and steal database credentials. πΈοΈ **Impact**: Complete site compromise.
Q5Is exploitation threshold high? (Auth/Config)
π **Auth**: No authentication required. π **Config**: Only requires access to the leftover installer URLs (`/installer.php`, `/installer-backup.php`). π **Threshold**: **LOW**. Easy to exploit if files remain.
Q6Is there a public Exp? (PoC/Wild Exploitation)
π **PoC**: Yes, public PoCs exist on GitHub (cved-sources) and Nuclei templates. π **Wild Exploitation**: High risk. Automated scanners can detect and exploit this easily.
Q7How to self-check? (Features/Scanning)
π **Check**: Scan for existence of `installer.php` or `installer-backup.php`. π οΈ **Tool**: Use Nuclei templates (`http/cves/2018/CVE-2018-17207.yaml`). π **Manual**: Try accessing these URLs directly in the browser.
Q8Is it fixed officially? (Patch/Mitigation)
β **Fix**: Upgrade Snap Creek Duplicator to **version 1.2.42 or higher**. π **Source**: Official changelog at snapcreek.com confirms the fix.
Q9What if no patch? (Workaround)
π§ **Workaround**: If patching is delayed, **delete** `installer.php` and `installer-backup.php` from the server. π§Ή **Mitigation**: Ensure no leftover installer files exist after migration/backup tasks.
Q10Is it urgent? (Priority Suggestion)
π₯ **Priority**: **CRITICAL**. π¨ **Urgency**: High. RCE allows total server takeover. π **Action**: Patch immediately or remove installer files today.