CVE-2025-30567

HIGH EXPLOITED NUCLEI

WordPress WP01 - Path Traversal

Title source: nuclei
STIX 2.1

Exploitation Summary

CVE-2025-30567 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Oyst3r1ng. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional PoC for CVE-2025-30567, an unauthorized arbitrary file download vulnerability in WordPress WP01 plugin. The exploit leverages improper authorization checks in the `make_archive` method to download sensitive files like `/etc/passwd`.

Description

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WP01 WP01 wp01 allows Path Traversal.This issue affects WP01: from n/a through <= 2.6.2.

Exploits (1)

nomisec WORKING POC 1 stars
by Oyst3r1ng · infoleak
https://github.com/Oyst3r1ng/CVE-2025-30567

This repository contains a functional PoC for CVE-2025-30567, an unauthorized arbitrary file download vulnerability in WordPress WP01 plugin. The exploit leverages improper authorization checks in the `make_archive` method to download sensitive files like `/etc/passwd`.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: WordPress WP01 plugin version 2.6.2
No auth needed
Prerequisites: Target must have the vulnerable WP01 plugin installed and accessible
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

WordPress WP01 - Path Traversal
HIGHVERIFIEDby s4e-io

References (2)

Core 2

Scores

CVSS v3 7.5
EPSS 0.4381
EPSS Percentile 97.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

VulnCheck KEV 2025-07-16
CWE
CWE-22
Status published
Products (2)
WP01/WP01 < 2.6.2
wp01ru/WP01 < 2.6.2
Published Mar 25, 2025
Tracked Since Feb 18, 2026