CVE-2019-25727

CRITICAL

WordPress Plugin ad manager wd 1.0.11 Arbitrary File Download

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-25727. PoCs published by 41!kh4224rDz.

AI-analyzed exploit summary The exploit demonstrates an arbitrary file download vulnerability in WordPress Plugin ad manager wd v1.0.11. The vulnerability arises from improper handling of the 'path' parameter in the 'wd_ads_admin_class.php' file, allowing attackers to download sensitive files like 'wp-config.php'.

Description

WordPress Plugin ad manager wd 1.0.11 contains an arbitrary file download vulnerability that allows unauthenticated attackers to download sensitive files by manipulating the path parameter. Attackers can send GET requests to the edit.php endpoint with export=export_csv and a malicious path parameter to read arbitrary files like wp-config.php accessible to the web server.

Exploits (1)

exploitdb WORKING POC

by 41!kh4224rDz · textwebappsphp

https://www.exploit-db.com/exploits/46252

View Code ZIP pw:eip

The exploit demonstrates an arbitrary file download vulnerability in WordPress Plugin ad manager wd v1.0.11. The vulnerability arises from improper handling of the 'path' parameter in the 'wd_ads_admin_class.php' file, allowing attackers to download sensitive files like 'wp-config.php'.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: WordPress Plugin ad manager wd v1.0.11

No auth needed

Prerequisites: Access to the WordPress admin panel URL

MITRE ATT&CK

T1005 - Data from Local System T1552 - Unsecured Credentials

devstral-2 · analyzed Jun 04, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit

ExploitDB-46252

https://www.exploit-db.com/exploits/46252

Product product

Official Product Homepage

https://web-dorado.com/products/wordpress-ad-manager-wd.html

Third Party Advisory third-party-advisory

VulnCheck Advisory: WordPress Plugin ad manager wd 1.0.11 Arbitrary File Download

https://www.vulncheck.com/advisories/wordpress-plugin-ad-manager-wd-arbitrary-file-download

Scores

CVSS v3 9.8

EPSS 0.0045

EPSS Percentile 35.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-22

Status published

Products (1)

ad-manager-wd/Ad Manager WD 1.0.11

Published Jun 04, 2026

Tracked Since Jun 04, 2026