EIP-2026-114129

PRE-CVE

WordPress Plugin Tweet Old Post 3.2.5 - SQL Injection

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-114129. PoCs published by sherl0ck_.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in the WordPress Tweet Old Post plugin (version <= 3.2.5). The vulnerability arises from unsanitized user input in the 'cat' parameter, allowing an attacker to inject malicious SQL queries to extract sensitive information such as user credentials and database details.

Description

WordPress Plugin Tweet Old Post 3.2.5 - SQL Injection

Exploits (1)

exploitdb WORKING POC
by sherl0ck_ · textwebappsphp
https://www.exploit-db.com/exploits/17789

This exploit demonstrates a SQL injection vulnerability in the WordPress Tweet Old Post plugin (version <= 3.2.5). The vulnerability arises from unsanitized user input in the 'cat' parameter, allowing an attacker to inject malicious SQL queries to extract sensitive information such as user credentials and database details.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: WordPress Tweet Old Post plugin <= 3.2.5
Auth required
Prerequisites: Access to WordPress admin panel · Valid session cookies
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026