CVE-2024-3673

CRITICAL NUCLEI

Web Directory Free <1.7.3 - Code Injection

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2024-3673. PoCs published by iSee857, Nxploited, Boshe99. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository contains functional exploit code for CVE-2026-22812, demonstrating a command execution vulnerability in OpenCode. The script sends a crafted JSON payload to execute the 'id' command and checks for successful execution by verifying the presence of 'uid=' and 'gid=' in the response.

Description

The Web Directory Free WordPress plugin before 1.7.3 does not validate a parameter before using it in an include(), which could lead to Local File Inclusion issues.

Exploits (3)

github WORKING POC 40 stars

by iSee857 · pythonpoc

https://github.com/iSee857/CVE-PoC/tree/main/WordPress_WebDirectoryFree(CVE-2024-3673).py

View Code ZIP pw:eip

The repository contains functional exploit code for CVE-2026-22812, demonstrating a command execution vulnerability in OpenCode. The script sends a crafted JSON payload to execute the 'id' command and checks for successful execution by verifying the presence of 'uid=' and 'gid=' in the response.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: OpenCode (version not specified)

No auth needed

Prerequisites: Network access to the target · OpenCode service running and accessible

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 27, 2026 Full analysis →

nomisec WORKING POC 1 stars

by Nxploited · poc

https://github.com/Nxploited/CVE-2024-3673

View Code ZIP pw:eip

The repository contains a functional Python exploit for CVE-2024-3673, a Local File Inclusion (LFI) vulnerability in the Web Directory Free WordPress plugin (versions <= 1.7.2). The exploit automates version checking and file reading via a crafted POST request to the admin-ajax.php endpoint.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Web Directory Free WordPress Plugin <= 1.7.2

No auth needed

Prerequisites: Target must have the vulnerable plugin installed · Network access to the WordPress site

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

github WORKING POC

by Boshe99 · pythonpoc

https://github.com/Boshe99/CVE-Exploits/tree/main/CVE-2024-3673

View Code ZIP pw:eip

The repository contains functional exploit code for CVE-2024-3673, targeting a WordPress plugin (3DPrint Lite 1.9.1.4) with an arbitrary file upload vulnerability. The exploit demonstrates the ability to upload a malicious file to a vulnerable target.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: WordPress Plugin 3DPrint Lite 1.9.1.4

No auth needed

Prerequisites: Target URL · Malicious file to upload

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 27, 2026 Full analysis →

Nuclei Templates (1)

Web Directory Free < 1.7.3 - Local File Inclusion

CRITICALVERIFIEDby s4e-io

References (1)

Core 1

Core References

Exploit, Third Party Advisory exploit vdb-entry technical-description

https://wpscan.com/vulnerability/0e8930cb-e176-4406-a43f-a6032471debf/

Scores

CVSS v3 9.1

EPSS 0.0558

EPSS Percentile 91.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

Status published

Products (1)

salephpscripts/web_directory_free < 1.7.3

Published Aug 30, 2024

Tracked Since Feb 18, 2026