CVE-2018-25326

HIGH

Google Drive for WordPress 2.2 Path Traversal RCE via gdrive-ajaxs.php

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-25326. PoCs published by Lenon Leite.

AI-analyzed exploit summary This exploit demonstrates an unauthenticated remote code execution (RCE) vulnerability in the Plugin Google Drive for WordPress 2.2. The vulnerability arises from improper escaping of the $_POST['file_name'] parameter, allowing arbitrary file deletion via directory traversal.

Description

Google Drive for WordPress 2.2 contains a path traversal vulnerability that allows unauthenticated attackers to read arbitrary files by injecting directory traversal sequences in the file_name parameter. Attackers can send POST requests to gdrive-ajaxs.php with the ajaxstype parameter set to del_fl_bkp and file_name containing traversal sequences ../../wp-config.php to access sensitive configuration files.

Exploits (1)

exploitdb WORKING POC

by Lenon Leite · textwebappsphp

https://www.exploit-db.com/exploits/44435

View Code ZIP pw:eip

This exploit demonstrates an unauthenticated remote code execution (RCE) vulnerability in the Plugin Google Drive for WordPress 2.2. The vulnerability arises from improper escaping of the $_POST['file_name'] parameter, allowing arbitrary file deletion via directory traversal.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Plugin Google Drive for WordPress 2.2

No auth needed

Prerequisites: Target must have the vulnerable plugin installed and activated

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed May 17, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit

ExploitDB-44435

https://www.exploit-db.com/exploits/44435

Product product

Official Product Homepage

http://lenonleite.com.br/

Third Party Advisory third-party-advisory

VulnCheck Advisory: Google Drive for WordPress 2.2 Path Traversal RCE via gdrive-ajaxs.php

https://www.vulncheck.com/advisories/google-drive-for-wordpress-path-traversal-rce-via-gdrive-ajaxs-php

Scores

CVSS v3 7.5

EPSS 0.0064

EPSS Percentile 45.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-22

Status published

Products (1)

wp-google-drive/Google Drive 2.2

Published May 17, 2026

Tracked Since May 17, 2026