CVE-2026-5344— Textpattern XML-RPC TXP_RPCServer.php mt_uploadImage path traversal

CVSS 6.3 · Medium EPSS 0.02% · P6 Updated Apr 03, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-5344

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Textpattern XML-RPC TXP_RPCServer.php mt_uploadImage path traversal

Source: NVD (National Vulnerability Database)

Vulnerability Description

A security vulnerability has been detected in Textpattern up to 4.9.1. Affected by this vulnerability is the function mt_uploadImage of the file rpc/TXP_RPCServer.php of the component XML-RPC Handler. The manipulation of the argument file.name leads to path traversal. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used. The vendor confirmed the issue and will provide a fix in the upcoming release.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

对路径名的限制不恰当(路径遍历)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Textpattern 路径遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Textpattern是Textpattern团队的一款简洁而又漂亮的Blog引擎。 Textpattern 4.9.1及之前版本存在路径遍历漏洞，该漏洞源于对文件rpc/TXP_RPCServer.php中XML-RPC Handler组件的mt_uploadImage函数参数file.name的错误操作，可能导致路径遍历攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	Textpattern	4.9.0	`cpe:2.3:a:textpattern:textpattern::::::::`

II. Public POCs for CVE-2026-5344

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-5344

请登录查看更多情报信息。

Submit #769166: Textpattern 4.9.1 Textpattern XML-RPC Arbitrary File Writethird-party-advisory
CVE-2026-5344 Textpattern XML-RPC TXP_RPCServer.php mt_uploadImage path traversalvdb-entrytechnical-description
https://nvd.nist.gov/vuln/detail/CVE-2026-5344

Same Patch Batch · n/a · 2026-04-02 · 13 CVEs total

CVE-2026-30332	7.5 HIGH	Etcher 安全漏洞
CVE-2026-5342	5.3 MEDIUM	LibRaw TIFF/NEF decoders_libraw.cpp nikon_load_padded_packed_raw out-of-bounds
CVE-2026-5331	4.7 MEDIUM	OpenCart Extension Installer installer.php path traversal
CVE-2026-5318	4.3 MEDIUM	LibRaw JPEG DHT losslessjpeg.cpp initval out-of-bounds write
CVE-2026-5360	3.7 LOW	Free5GC aper type confusion
CVE-2026-25212		Percona PMM 安全漏洞
CVE-2026-26895		osTicket 安全漏洞
CVE-2026-34876		Mbed TLS 安全漏洞
CVE-2026-30603		Qianniao QN-L23PA0904 安全漏洞
CVE-2026-34877		Mbed TLS 安全漏洞
CVE-2026-30252		Interzen Consulting ZenShare Suite 安全漏洞
CVE-2026-30251		Interzen Consulting ZenShare Suite 安全漏洞

IV. Related Vulnerabilities

Same product: Textpattern

CVE-2021-47888
Textpattern 4.8.3 - Remote code execution

Same vendor: n/a

Same weakness: CWE-22

V. Comments for CVE-2026-5344

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-5344— Textpattern XML-RPC TXP_RPCServer.php mt_uploadImage path traversal

I. Basic Information for CVE-2026-5344

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-5344

III. Intelligence Information for CVE-2026-5344

Same Patch Batch · n/a · 2026-04-02 · 13 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-5344

Leave a comment