CVE-2026-2416

HIGH NUCLEI

Geo Mashup WordPress Plugin <1.13.17 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-2416. PoCs published by Sechunt3r. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2026-2416, demonstrating an unauthenticated time-based blind SQL injection in the Geo Mashup WordPress plugin. The exploit includes both a Nuclei template (YAML) and a Bash script to verify and exploit the vulnerability.

Description

The Geo Mashup plugin for WordPress is vulnerable to SQL Injection via the 'sort' parameter in all versions up to, and including, 1.13.17. This is due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

Exploits (1)

github WORKING POC

by Sechunt3r · shellpoc

https://github.com/Sechunt3r/CVE-POCs/tree/main/CVE-2026-2416

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2026-2416, demonstrating an unauthenticated time-based blind SQL injection in the Geo Mashup WordPress plugin. The exploit includes both a Nuclei template (YAML) and a Bash script to verify and exploit the vulnerability.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Geo Mashup WordPress plugin <= 1.13.17

No auth needed

Prerequisites: WordPress site with vulnerable Geo Mashup plugin installed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Mar 19, 2026 Full analysis →

Nuclei Templates (1)

Geo Mashup <= 1.13.17 - SQL Injection

HIGHVERIFIEDby Shivam Kamboj

References (4)

Core 4

Core References

Product

https://plugins.trac.wordpress.org/browser/geo-mashup/tags/1.13.17/geo-mashup-db.php#L1530

Product

https://plugins.trac.wordpress.org/browser/geo-mashup/tags/1.13.17/geo-mashup-db.php#L1701

Product

https://plugins.trac.wordpress.org/changeset/3461591/geo-mashup

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/8ab5ca55-0a8a-45a8-9ab0-aa3bbfa85417?source=cve

Scores

CVSS v3 7.5

EPSS 0.1590

EPSS Percentile 94.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-89

Status published

Products (1)

cyberhobo/Geo Mashup < 1.13.17

Published Feb 25, 2026

Tracked Since Feb 25, 2026