CVE-2025-23942

CRITICAL

NgocCode WP Load Gallery <2.1.6 - RCE

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-23942. PoCs published by Nxploited, Boshe99.

AI-analyzed exploit summary This is a functional exploit for CVE-2025-23942, targeting an unrestricted file upload vulnerability in the WP Load Gallery WordPress plugin (versions up to 2.1.6). It automates authentication, nonce extraction, and shell upload to achieve remote code execution.

Description

Unrestricted Upload of File with Dangerous Type vulnerability in ngocuct0912 WP Load Gallery wp-load-gallery allows Upload a Web Shell to a Web Server.This issue affects WP Load Gallery: from n/a through <= 2.1.6.

Exploits (2)

nomisec WORKING POC 3 stars

by Nxploited · poc

https://github.com/Nxploited/CVE-2025-23942-poc

View Code ZIP pw:eip

This is a functional exploit for CVE-2025-23942, targeting an unrestricted file upload vulnerability in the WP Load Gallery WordPress plugin (versions up to 2.1.6). It automates authentication, nonce extraction, and shell upload to achieve remote code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: WP Load Gallery WordPress plugin <= 2.1.6

Auth required

Prerequisites: WordPress Author+ credentials · WP Load Gallery plugin <= 2.1.6 installed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505.003 - Web Shell

devstral-2 · analyzed Feb 16, 2026 Full analysis →

github WORKING POC

by Boshe99 · pythonpoc

https://github.com/Boshe99/CVE-Exploits/tree/main/CVE-2025-23942-poc

View Code ZIP pw:eip

The repository contains functional exploit code for CVE-2025-23942, targeting an arbitrary file upload vulnerability in the WordPress Plugin 3DPrint Lite 1.9.1.4. The exploit script demonstrates the ability to upload a malicious file to a vulnerable target.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: WordPress Plugin 3DPrint Lite 1.9.1.4

No auth needed

Prerequisites: target URL · path to a file to upload

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory

https://patchstack.com/database/wordpress/plugin/wp-load-gallery/vulnerability/wordpress-wp-load-gallery-plugin-2-1-6-arbitrary-file-upload-vulnerability?_s_id=cve

Vdb Entry vdb-entry

https://patchstack.com/database/Wordpress/Plugin/wp-load-gallery/vulnerability/wordpress-wp-load-gallery-plugin-2-1-6-arbitrary-file-upload-vulnerability?_s_id=cve

Scores

CVSS v3 9.1

EPSS 0.0251

EPSS Percentile 82.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-434

Status published

Products (2)

NgocCode/WP Load Gallery < 2.1.6

ngocuct0912/WP Load Gallery < 2.1.6

Published Jan 22, 2025

Tracked Since Feb 18, 2026