Share
## https://sploitus.com/exploit?id=WPEX-ID:A554091E-39D1-4E7E-BBCF-19B2A7B8E89F
1. Create a malicious phar file.
2. Upload the malicious phar file as an image via the upload_image_from_url action.
3. Call the file with the phar:// wrapper using the same action.