CVE-2015-10134

HIGH

Simple Backup <2.7.10 - Arbitrary File Download

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-10134. PoCs published by Mahdi.Hidden, including Metasploit module auxiliary/scanner/http/wp_simple_backup_file_read.

AI-analyzed exploit summary This Metasploit module exploits a directory traversal vulnerability in the WordPress Simple Backup plugin (version 2.7.10), allowing arbitrary file reads with web server privileges. It sends a crafted HTTP GET request to download files via path traversal.

Description

The Simple Backup plugin for WordPress is vulnerable to Arbitrary File Download in versions up to, and including, 2.7.10. via the download_backup_file function. This is due to a lack of capability checks and file type validation. This makes it possible for attackers to download sensitive files such as the wp-config.php file from the affected site.

Exploits (1)

metasploit WORKING POC

by Mahdi.Hidden · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/wp_simple_backup_file_read.rb

View Code ZIP pw:eip

This Metasploit module exploits a directory traversal vulnerability in the WordPress Simple Backup plugin (version 2.7.10), allowing arbitrary file reads with web server privileges. It sends a crafted HTTP GET request to download files via path traversal.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: WordPress Simple Backup plugin version 2.7.10

No auth needed

Prerequisites: Target must have WordPress Simple Backup plugin version 2.7.10 installed

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit

https://packetstormsecurity.com/files/131919/

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/29482b70-0ff2-4bb1-9d41-9cffb83b5ad0?source=cve

Scores

CVSS v3 7.5

EPSS 0.0111

EPSS Percentile 61.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-22

Status published

Products (2)

mywebsiteadvisor/Simple Backup < 2.7.11

mywebsiteadvisor/simple_backup < 2.7.10

Published Jul 19, 2025

Tracked Since Feb 18, 2026