Exploit for CVE-2026-1555

Name: Exploit for CVE-2026-1555
Rating: 5 (13 reviews)

2026-06-13 | CVSS 9.8

## https://sploitus.com/exploit?id=DF2E3CB4-78E1-50A5-8D6D-0BAD9ED75E23
# CVE-2026-1555: Unauthenticated Arbitrary File Upload in WebStack WordPress Theme

## Proof of Concept (PoC)

## Credits

| | |
|---|---|
| **PoC Author:** | Security Researcher |
| **Research Credit:** | Webshell Security Researchers |
| **Telegram:** | https://t.me/WebshellSR |

## Overview

This repository contains a Proof of Concept (PoC) for **CVE-2026-1555**, an **Unauthenticated Arbitrary File Upload** vulnerability affecting the **WebStack** theme for WordPress (<= 1.2024).

The purpose of this repository is to demonstrate the vulnerability for **security research, defensive testing, and educational purposes only**.

## Usage

```bash
python cve_2026_1555_poc.py targets.txt --threads 30
```

Confirmed shells are saved to `webshell.txt`.