CVE-2018-16283

CRITICAL NUCLEI LAB

Wechat Broadcast < 1.2.0 - Path Traversal via Image.php URL Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2018-16283. PoCs published by Manuel García Cárdenas, cved-sources. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates a Local File Inclusion (LFI) and Remote File Inclusion (RFI) vulnerability in WordPress Plugin Wechat Broadcast 1.2.0. The vulnerability arises from unsanitized user input in the 'url' parameter of the Image.php file, allowing attackers to read local files or include remote files.

Description

The Wechat Broadcast plugin 1.2.0 and earlier for WordPress allows Directory Traversal via the Image.php url parameter.

Exploits (2)

exploitdb WORKING POC
by Manuel García Cárdenas · textwebappsphp
https://www.exploit-db.com/exploits/45438

This exploit demonstrates a Local File Inclusion (LFI) and Remote File Inclusion (RFI) vulnerability in WordPress Plugin Wechat Broadcast 1.2.0. The vulnerability arises from unsanitized user input in the 'url' parameter of the Image.php file, allowing attackers to read local files or include remote files.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: WordPress Plugin Wechat Broadcast 1.2.0
No auth needed
Prerequisites: WordPress Plugin Wechat Broadcast 1.2.0 installed · Access to the target WordPress site
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC
by cved-sources · poc
https://github.com/cved-sources/cve-2018-16283

This repository provides a Docker-based environment to exploit CVE-2018-16283, a vulnerability in the WordPress WeChat Broadcast plugin. The script sets up a vulnerable WordPress instance with MySQL and activates the vulnerable plugin.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: WordPress WeChat Broadcast plugin 1.2.0
No auth needed
Prerequisites: Docker environment · WordPress installation
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion
CRITICALby 0x240x23elu

References (5)

Core 5
Core References
Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2018/Sep/32
Exploit, Third Party Advisory x_refsource_misc
https://wpvulndb.com/vulnerabilities/9132
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45438/
Issue Tracking, Third Party Advisory x_refsource_confirm
https://github.com/springjk/wordpress-wechat-broadcast/issues/14

Scores

CVSS v3 9.8
EPSS 0.6307
EPSS Percentile 99.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Lab Environment

COMMUNITY
Community Lab
docker pull cved/base-wordpress

Details

CWE
CWE-22
Status published
Products (1)
wechat_brodcast_project/wechat_brodcast < 1.2.0
Published Sep 24, 2018
Tracked Since Feb 18, 2026