CVE-2025-15158

HIGH

WP Enable WebP <= 1.0 - Authenticated Arbitrary File Upload via wpse_file_and_ext_webp Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-15158. PoCs published by exploitChains.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2025-15158, an arbitrary file upload vulnerability in the WordPress plugin WP Enable WebP <= 1.0. The exploit leverages flawed file extension validation to upload a malicious PHP file disguised as a WebP image, achieving remote code execution.

Description

The WP Enable WebP plugin for WordPress is vulnerable to arbitrary file uploads due to improper file type validation in the 'wpse_file_and_ext_webp' function in all versions up to, and including, 1.0. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Exploits (1)

github WORKING POC 2 stars

by exploitChains · pythonpoc

https://github.com/exploitChains/poc-collection/tree/main/CVE-2025-15158

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2025-15158, an arbitrary file upload vulnerability in the WordPress plugin WP Enable WebP <= 1.0. The exploit leverages flawed file extension validation to upload a malicious PHP file disguised as a WebP image, achieving remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: WordPress Plugin WP Enable WebP <= 1.0

Auth required

Prerequisites: WordPress site with WP Enable WebP plugin <= 1.0 installed · Author+ user credentials

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (2)

Core 2

Core References

Product

https://plugins.trac.wordpress.org/browser/wp-enable-webp/trunk/wp-enable-webp.php?rev=1998897#L43

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/fa53c5ee-fe7f-4fb2-baaa-2c1a151d4b2c?source=cve

Scores

CVSS v3 8.8

EPSS 0.0043

EPSS Percentile 34.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-434

Status published

Products (1)

eastsidecode/WP Enable WebP < 1.0

Published Jan 07, 2026

Tracked Since Feb 18, 2026