CVE-2012-10026

CRITICAL

WordPress Plugin Asset-Manager < 2.0 - Unauthenticated Arbitrary File Upload via upload.php

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2012-10026. PoCs published by Metasploit, Sammy FORGIT, including Metasploit module exploits/unix/webapp/wp_asset_manager_upload_exec.

AI-analyzed exploit summary This Metasploit module exploits an unauthenticated file upload vulnerability in the WordPress Asset-Manager plugin (<= 2.0) to achieve remote code execution by uploading a malicious PHP payload.

Description

The WordPress plugin Asset-Manager version 2.0 and below contains an unauthenticated arbitrary file upload vulnerability in upload.php. The endpoint fails to properly validate and restrict uploaded file types, allowing remote attackers to upload malicious PHP scripts to a predictable temporary directory. Once uploaded, the attacker can execute the file via a direct HTTP GET request, resulting in remote code execution under the web server’s context.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotephp
https://www.exploit-db.com/exploits/23652

This Metasploit module exploits an unauthenticated file upload vulnerability in the WordPress Asset-Manager plugin (<= 2.0) to achieve remote code execution by uploading a malicious PHP payload.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: WordPress Asset-Manager plugin <= 2.0
No auth needed
Prerequisites: Target running WordPress with vulnerable Asset-Manager plugin · Network access to the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Sammy FORGIT · phpwebappsphp
https://www.exploit-db.com/exploits/18993

This exploit demonstrates an arbitrary file upload vulnerability in the WordPress Asset Manager plugin (v0.2), allowing an attacker to upload a malicious PHP file (e.g., a web shell) via a cURL POST request to the vulnerable endpoint. The uploaded file can then be accessed to execute arbitrary PHP code.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: WordPress Asset Manager Plugin v0.2
No auth needed
Prerequisites: Target must have the vulnerable WordPress Asset Manager plugin installed and accessible · Attacker must be able to send HTTP POST requests to the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by Sammy FORGIT · rubypocphp
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/wp_asset_manager_upload_exec.rb

This Metasploit module exploits an unauthenticated file upload vulnerability in WordPress Asset-Manager plugin <= 2.0, allowing arbitrary PHP code execution by uploading a malicious file to a temp directory and then executing it.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: WordPress Asset-Manager plugin <= 2.0
No auth needed
Prerequisites: WordPress with vulnerable Asset-Manager plugin installed · Network access to the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Scores

CVSS v4 10.0
EPSS 0.0114
EPSS Percentile 62.5%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-434
Status published
Products (2)
Asset-Manager/Wordpress Plugin < 2.0
jkriddle/asset-manager < 2.0
Published Aug 05, 2025
Tracked Since Feb 18, 2026