EIP-2026-113542
PRE-CVEWordPress Plugin Advanced uploader 2.10 - Multiple Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-113542. PoCs published by KedAns-Dz.
AI-analyzed exploit summary This exploit demonstrates two vulnerabilities in WordPress Plugin Advanced uploader v2.10: arbitrary file upload leading to remote code execution (RCE) and local file disclosure via path traversal. The PoC uses cURL to upload a malicious PHP file and to read sensitive files like wp-config.php.
Description
WordPress Plugin Advanced uploader 2.10 - Multiple Vulnerabilities
Exploits (1)
This exploit demonstrates two vulnerabilities in WordPress Plugin Advanced uploader v2.10: arbitrary file upload leading to remote code execution (RCE) and local file disclosure via path traversal. The PoC uses cURL to upload a malicious PHP file and to read sensitive files like wp-config.php.