EIP-2026-113778
PRE-CVEWordPress Plugin Gallery - 'filename_1' Arbitrary File Access
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-113778. PoCs published by Beni_Vanda.
AI-analyzed exploit summary The provided text describes an arbitrary file-read vulnerability in the Gallery plugin for WordPress, specifically affecting version 3.8.3. The vulnerability allows remote attackers to read arbitrary files by manipulating the 'filename_1' parameter in the plugin's PHP file.
Description
WordPress Plugin Gallery - 'filename_1' Arbitrary File Access
Exploits (1)
The provided text describes an arbitrary file-read vulnerability in the Gallery plugin for WordPress, specifically affecting version 3.8.3. The vulnerability allows remote attackers to read arbitrary files by manipulating the 'filename_1' parameter in the plugin's PHP file.