Primary

Context

Textpattern CMS Remote Code Execution Vulnerability

Vulnerability

Patched

A remote code execution vulnerability has been identified in Textpattern CMS versions prior to 4.8.3. This vulnerability allows authenticated users to upload malicious PHP files. Once uploaded, these files can execute arbitrary commands by being accessed through a specific URL parameter.

Impact

Exploitation of this vulnerability allows for authenticated remote code execution on the server where Textpattern is installed.

Reproduction

To reproduce this vulnerability, log into a Textpattern CMS account on a version prior to 4.8.3. Upload a PHP file containing a payload for executing shell commands. After the file is uploaded, access it through the 'cmd' URL parameter to execute the embedded commands.

Remediation

Users are advised to upgrade to Textpattern version 4.8.3 or later.

Added: Jan 23, 2026, 5:43 PM

Updated: Jan 23, 2026, 10:32 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

10.0

exploitability

6.8

remediation

7.7

relevance

2.3

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

10.0

exploitability

6.8

remediation

7.7

relevance

2.3

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Textpattern CMS Remote Code Execution Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Textpattern

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating