EIP-2026-114231
PRE-CVEWordPress Plugin WP Publication Archive 2.0.1 - 'file' Information Disclosure
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-114231. PoCs published by AutoSec Tools.
AI-analyzed exploit summary This is a writeup describing a directory traversal vulnerability in the WP Publication Archive Plugin for WordPress. The vulnerability allows an attacker to download arbitrary files by manipulating the 'file' parameter in the 'openfile.php' script.
Description
WordPress Plugin WP Publication Archive 2.0.1 - 'file' Information Disclosure
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by AutoSec Tools · textwebappsphp
https://www.exploit-db.com/exploits/35263
This is a writeup describing a directory traversal vulnerability in the WP Publication Archive Plugin for WordPress. The vulnerability allows an attacker to download arbitrary files by manipulating the 'file' parameter in the 'openfile.php' script.
Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
WP Publication Archive Plugin for WordPress 2.0.1
No auth needed
Prerequisites:
Access to the vulnerable endpoint
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026