EIP-2026-114040
PRE-CVEWordPress Plugin Shopp - Multiple Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-114040. PoCs published by T0x!c.
AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in the Shopp plugin for WordPress, including XSS and information disclosure via unsanitized user input. It provides specific URLs to trigger these vulnerabilities.
Description
WordPress Plugin Shopp - Multiple Vulnerabilities
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by T0x!c · textwebappsphp
https://www.exploit-db.com/exploits/37934
The exploit demonstrates multiple vulnerabilities in the Shopp plugin for WordPress, including XSS and information disclosure via unsanitized user input. It provides specific URLs to trigger these vulnerabilities.
Classification
Working Poc 90%
Attack Type
Xss | Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
Shopp plugin for WordPress 1.0.17
No auth needed
Prerequisites:
Access to the target WordPress site with the vulnerable Shopp plugin installed
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026