EIP-2026-113624

PRE-CVE

WordPress Plugin Cerber Security_ Antispam & Malware Scan 8.0 - Multiple Bypass Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-113624. PoCs published by ed0x21son.

AI-analyzed exploit summary This exploit demonstrates multiple bypass techniques for the WordPress Cerber Security plugin, including user enumeration, admin script protection, and REST API restrictions. It leverages URL encoding and path manipulation to circumvent security measures.

Description

WordPress Plugin Cerber Security_ Antispam & Malware Scan 8.0 - Multiple Bypass Vulnerabilities

Exploits (1)

exploitdb WORKING POC

by ed0x21son · textwebappsphp

https://www.exploit-db.com/exploits/46497

View Code ZIP pw:eip

This exploit demonstrates multiple bypass techniques for the WordPress Cerber Security plugin, including user enumeration, admin script protection, and REST API restrictions. It leverages URL encoding and path manipulation to circumvent security measures.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: WordPress Cerber Security plugin version 8.0

No auth needed

Prerequisites: Access to the target WordPress instance · curl or similar HTTP client

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026