CVE-2024-58348

CRITICAL

WordPress Background Image Cropper 1.2 Remote Code Execution

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-58348. PoCs published by Milad karimi.

AI-analyzed exploit summary This exploit targets a file upload vulnerability in the WordPress Background Image Cropper plugin v1.2, allowing unauthenticated remote code execution by uploading a malicious PHP shell. The script checks for the presence of the vulnerable endpoint and attempts to exploit it.

Description

WordPress Background Image Cropper version 1.2 contains a remote code execution vulnerability that allows unauthenticated attackers to upload arbitrary files by accessing the ups.php endpoint. Attackers can upload PHP files through the file upload form in the plugin directory to execute arbitrary code on the server.

Exploits (1)

exploitdb WORKING POC

by Milad karimi · textwebappsphp

https://www.exploit-db.com/exploits/51998

View Code ZIP pw:eip

This exploit targets a file upload vulnerability in the WordPress Background Image Cropper plugin v1.2, allowing unauthenticated remote code execution by uploading a malicious PHP shell. The script checks for the presence of the vulnerable endpoint and attempts to exploit it.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: WordPress Plugin Background Image Cropper v1.2

No auth needed

Prerequisites: Target running WordPress with the vulnerable plugin installed · Access to the plugin's upload endpoint

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Jun 08, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit exploit

ExploitDB-51998

https://www.exploit-db.com/exploits/51998

Product product

Official Product Homepage

https://wordpress.org

Product product

Product Reference

https://wordpress.org/plugins/background-image-cropper/

Third Party Advisory third-party-advisory

VulnCheck Advisory: WordPress Background Image Cropper 1.2 Remote Code Execution

https://www.vulncheck.com/advisories/wordpress-background-image-cropper-remote-code-execution

Scores

CVSS v3 9.8

EPSS 0.0019

EPSS Percentile 40.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-434

Status published

Products (1)

background-image-cropper/Background Image Cropper 1.2

Published Jun 08, 2026

Tracked Since Jun 08, 2026