EIP-2026-113581
PRE-CVEWordPress Plugin Backup 2.0.1 - Information Disclosure
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-113581. PoCs published by Stephan Knauss.
AI-analyzed exploit summary This is a technical writeup detailing an information disclosure vulnerability in the WordPress Backup plugin (version 2.0.1). The vulnerability exposes backup log files and backup archives due to predictable paths, allowing attackers to download sensitive site data.
Description
WordPress Plugin Backup 2.0.1 - Information Disclosure
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Stephan Knauss · textwebappsphp
https://www.exploit-db.com/exploits/19524
This is a technical writeup detailing an information disclosure vulnerability in the WordPress Backup plugin (version 2.0.1). The vulnerability exposes backup log files and backup archives due to predictable paths, allowing attackers to download sensitive site data.
Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
WordPress Backup plugin 2.0.1
No auth needed
Prerequisites:
Access to the target WordPress site · Backup plugin installed with default configuration
mistral-large-3 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026