CVE-2018-25308

HIGH

BuddyPress Xprofile Custom Fields Type 2.6.3 Remote Code Execution

Title source: cna
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-25308. PoCs published by Lenon Leite.

AI-analyzed exploit summary This is a technical writeup detailing an RCE vulnerability in BuddyPress Xprofile Custom Fields Type 2.6.3 due to unescaped POST parameters. It includes steps to exploit the vulnerability but lacks functional exploit code.

Description

BuddyPress Xprofile Custom Fields Type 2.6.3 contains a remote code execution vulnerability that allows authenticated users to delete arbitrary files by manipulating unescaped POST parameters. Attackers can modify the field_hiddenfile and field_deleteimg parameters during profile editing to unlink files from the server.

Exploits (1)

exploitdb WRITEUP
by Lenon Leite · textwebappsphp
https://www.exploit-db.com/exploits/44432

This is a technical writeup detailing an RCE vulnerability in BuddyPress Xprofile Custom Fields Type 2.6.3 due to unescaped POST parameters. It includes steps to exploit the vulnerability but lacks functional exploit code.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: BuddyPress Xprofile Custom Fields Type 2.6.3
Auth required
Prerequisites: registered user access in BuddyPress · access to the edit profile page
devstral-2 · analyzed Apr 30, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit exploit
ExploitDB-44432
https://www.exploit-db.com/exploits/44432
Product product
Official Product Homepage
http://lenonleite.com.br/
Third Party Advisory third-party-advisory
VulnCheck Advisory: BuddyPress Xprofile Custom Fields Type 2.6.3 Remote Code Execution
https://www.vulncheck.com/advisories/buddypress-xprofile-custom-fields-type-remote-code-execution

Scores

CVSS v3 8.8
EPSS 0.0074
EPSS Percentile 49.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-22
Status published
Products (1)
donmik/Buddypress Xprofile Custom Fields Type 2.6.3
Published Apr 29, 2026
Tracked Since Apr 30, 2026