CVE-2023-26852

HIGH

Textpattern < 4.8.8 - Arbitrary File Upload via Upload Plugin

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-26852. PoCs published by leekenghwa.

AI-analyzed exploit summary The repository describes an unrestricted file upload vulnerability in Textpattern CMS versions 4.8.8 and below, allowing admin users to upload malicious PHP files via the plugin upload feature, leading to remote code execution. The steps outline the exploitation process but do not include functional exploit code.

Description

An arbitrary file upload vulnerability in the upload plugin of Textpattern v4.8.8 and below allows attackers to execute arbitrary code by uploading a crafted PHP file.

Exploits (1)

nomisec WRITEUP
by leekenghwa · poc
https://github.com/leekenghwa/CVE-2023-26852-Textpattern-v4.8.8-and-

The repository describes an unrestricted file upload vulnerability in Textpattern CMS versions 4.8.8 and below, allowing admin users to upload malicious PHP files via the plugin upload feature, leading to remote code execution. The steps outline the exploitation process but do not include functional exploit code.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Textpattern CMS v4.8.8 and below
Auth required
Prerequisites: Admin credentials · Access to the plugin upload feature
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 7.2
EPSS 0.0199
EPSS Percentile 78.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-434
Status published
Products (1)
textpattern/textpattern < 4.8.8
Published Apr 12, 2023
Tracked Since Feb 18, 2026