EIP-2026-113575
PRE-CVEWordPress Plugin Audio Record 1.0 - Arbitrary File Upload
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-113575. PoCs published by Kaimi.
AI-analyzed exploit summary This exploit demonstrates an arbitrary file upload vulnerability in the WordPress Audio Record plugin 1.0. The vulnerability arises due to unrestricted file upload in the recorder.php file, allowing attackers to upload malicious PHP files by manipulating the Content-Type and filename parameters.
Description
WordPress Plugin Audio Record 1.0 - Arbitrary File Upload
Exploits (1)
This exploit demonstrates an arbitrary file upload vulnerability in the WordPress Audio Record plugin 1.0. The vulnerability arises due to unrestricted file upload in the recorder.php file, allowing attackers to upload malicious PHP files by manipulating the Content-Type and filename parameters.