CVE-2016-20064

MEDIUM

WP Vault 0.8.6.6 Local File Inclusion via wpv-image Parameter

Title source: cna
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-20064. PoCs published by Lenon Leite.

AI-analyzed exploit summary This exploit demonstrates a Local File Inclusion (LFI) vulnerability in WP Vault 0.8.6.6 due to improper escaping of the $_GET['wpv-image'] parameter. The PoC shows how an attacker can read arbitrary files by manipulating the parameter.

Description

WP Vault 0.8.6.6 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files by exploiting an unescaped parameter in the include functionality. Attackers can supply directory traversal sequences through the wpv-image GET parameter to access sensitive files like system configuration and credentials.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Lenon Leite · textwebappsphp
https://www.exploit-db.com/exploits/40850

This exploit demonstrates a Local File Inclusion (LFI) vulnerability in WP Vault 0.8.6.6 due to improper escaping of the $_GET['wpv-image'] parameter. The PoC shows how an attacker can read arbitrary files by manipulating the parameter.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: WP Vault 0.8.6.6
No auth needed
Prerequisites: access to the vulnerable WordPress plugin endpoint
devstral-2 · analyzed Jun 09, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit exploit
ExploitDB-40850
https://www.exploit-db.com/exploits/40850
Product product
Official Product Homepage
https://wordpress.org/plugins/wp-vault/
Product product
Official Product Homepage
http://lenonleite.com.br/
Third Party Advisory third-party-advisory
VulnCheck Advisory: WP Vault 0.8.6.6 Local File Inclusion via wpv-image Parameter
https://www.vulncheck.com/advisories/wp-vault-local-file-inclusion-via-wpv-image-parameter

Scores

CVSS v3 6.2
EPSS 0.0067
EPSS Percentile 47.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-98
Status published
Products (1)
myasui/WP Vault 0.8.6.6
Published Jun 09, 2026
Tracked Since Jun 09, 2026