## https://sploitus.com/exploit?id=936C4411-F1F9-5B80-B04B-4E6FEA095DE7
<img src="https://raw.githubusercontent.com/issamjr/CVE-2025-26909-Scanner/refs/heads/main/file_00000000bc8c622f812f7390bb5235c7.png" />
# CVE-2025-26909 Vulnerability Scanner
A Python-based scanner and proof-of-concept script for detecting CVE-2025-26909 in WordPress plugin "Hide My WP Ghost" by Issam Junior.
## π Vulnerability Overview
**CVE-2025-26909** is a critical Local File Inclusion (LFI) vulnerability found in versions <= 5.4.01 of the "Hide My WP Ghost" plugin. This flaw allows attackers to read arbitrary files on the server by abusing improperly validated file path inputs.
## π₯ Impact
Attackers may exploit this flaw to:
- View sensitive files such as `/etc/passwd`, `wp-config.php`.
- Execute remote PHP code using LFI chains if combined with other misconfigurations.
## π‘οΈ Mitigation
- Update the plugin to version **5.4.02 or newer**.
- Disable the βChange Pathsβ feature if it is not needed.
- Apply file inclusion filtering and file access hardening (AppArmor, chroot, etc).
## π Usage
### 1. Clone the tool
```bash
git clone https://github.com/issamjr/CVE-2025-26909-Scanner.git
cd CVE-2025-26909-Scanner
```
### 2. Install dependencies
```bash
pip install -r requirements.txt
```
### 3. Run the scanner
```bash
python3 scanner.py http://example.com/
```
## π Output Format
- `[+]` Vulnerable
- `[-]` Not Vulnerable
- `[*]` Checking
- `[!]` Errors
## π¨βπ» Author
- Issam Junior
- Telegram: [@issamiso](https://t.me/issamiso)
- GitHub: [issamjr](https://github.com/issamjr)