EIP-2026-114040

PRE-CVE

WordPress Plugin Shopp - Multiple Vulnerabilities

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-114040. PoCs published by T0x!c.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in the Shopp plugin for WordPress, including XSS and information disclosure via unsanitized user input. It provides specific URLs to trigger these vulnerabilities.

Description

WordPress Plugin Shopp - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED
by T0x!c · textwebappsphp
https://www.exploit-db.com/exploits/37934

The exploit demonstrates multiple vulnerabilities in the Shopp plugin for WordPress, including XSS and information disclosure via unsanitized user input. It provides specific URLs to trigger these vulnerabilities.

Classification
Working Poc 90%
Attack Type
Xss | Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Shopp plugin for WordPress 1.0.17
No auth needed
Prerequisites: Access to the target WordPress site with the vulnerable Shopp plugin installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026