Skip to content
Verified reproduction

CVE-2026-63030: WordPress 7.0.1 pre-auth fresh-administrator chain to RCE

CVE-2026-63030 is verified against the affected target vulnerability class: RCE This critical reproduction includes runnable sandbox proof, artifacts, and a plain-text agent view under REPRO-2026-00294.

REPRO-2026-00294 RCE Variant found Known vulnerability Jul 19, 2026 CVE entry .txt
Severity CRITICAL
Confidence HIGH
Reproduced in 65m 17s
Tool calls 443
Spend $63.38
$ pruva-verify REPRO-2026-00294
or curl -O https://pruva.dev/api/v1/reproductions/REPRO-2026-00294/artifacts/bundle/repro/reproduction_steps.sh && chmod +x reproduction_steps.sh && ./reproduction_steps.sh
Run in a VM or disposable container. This exploits a real vulnerability.
02 · The vulnerability

Pruva Ticket Brief: Fresh-Administrator RCE Chain

03 · Root cause
Variant analysis
04 · Reproduction transcript

The agent's step-by-step process — every tool call, every handoff, the moment the exploit fired. Phases: support · claim contract · reproduction · judge · variant analysis

Loading session...

05 · Artifacts

Scripts, logs, diffs, and output captured during the reproduction.

bundle/vuln_variant/root_cause_equivalence.json2.6 KB
bundle/logs/vuln_variant/final_deliverable_sha256.log0.8 KB
bundle/repro/reproduction_steps.sh21.7 KB
bundle/repro/helpers/wp2shell_full_chain.py6.4 KB
bundle/repro/helpers/wp2shell_lab_probe.py15.0 KB
bundle/repro/helpers/wp2shell_admin_to_rce.py5.1 KB
bundle/repro/helpers/wp2shell_install_target.py1.5 KB
bundle/repro/helpers/wp2shell_oembed_server.py2.2 KB
bundle/repro/runtime_manifest.json1.5 KB
bundle/repro/validation_verdict.json1.1 KB
bundle/repro/rca_report.md10.5 KB
bundle/logs/vulnerable_database_before.log0.1 KB
bundle/logs/two_run_verification.log0.8 KB
bundle/logs/source_identity.log0.6 KB
bundle/logs/image_identity.log0.5 KB
bundle/logs/vulnerable_setup.log1.4 KB
bundle/logs/fixed_setup.log1.4 KB
bundle/logs/network_boundary.log0.4 KB
bundle/logs/oembed_provider.log3.5 KB
bundle/logs/second_clean_run.log0.2 KB
bundle/logs/pass1/reproduction_steps.log11.6 KB
bundle/logs/pass1/fixed_database_after.log0.1 KB
bundle/logs/final_two_consecutive_runs.log0.6 KB
bundle/logs/ultimate_pass2/reproduction_steps.log11.6 KB
bundle/logs/ultimate_pass2/vulnerable_http_chain.log1.1 KB
bundle/logs/ultimate_pass2/vulnerable_command_response.log0.1 KB
bundle/logs/ultimate_pass2/fixed_database_after.log0.1 KB
bundle/logs/fixed_database_before.log0.1 KB
bundle/vuln_variant/reproduction_steps.sh14.0 KB
bundle/vuln_variant/variant_probe.py4.4 KB
bundle/logs/vuln_variant/verification_run1.log10.1 KB
bundle/logs/vuln_variant/verification_run2.log10.1 KB
bundle/logs/vuln_variant/candidate_matrix.log0.4 KB
bundle/logs/vuln_variant/source_identity.log0.5 KB
bundle/logs/vuln_variant/static_coverage.log0.4 KB
bundle/vuln_variant/validation_verdict.json3.3 KB
bundle/vuln_variant/variant_manifest.json4.0 KB
bundle/vuln_variant/rca_report.md11.8 KB
bundle/vuln_variant/patch_analysis.md8.3 KB
bundle/vuln_variant/runtime_manifest.json2.4 KB
bundle/logs/vuln_variant/vulnerable_query_scalar.json1.7 KB
bundle/logs/vuln_variant/fixed_query_scalar.json0.8 KB
bundle/logs/vuln_variant/vulnerable_body_scalar.json1.7 KB
bundle/logs/vuln_variant/fixed_body_scalar.json0.8 KB
bundle/logs/vuln_variant/vulnerable_batch_alignment.json0.8 KB
bundle/logs/vuln_variant/fixed_batch_alignment.json0.8 KB
bundle/logs/vuln_variant/two_run_verification.log0.0 KB
bundle/logs/vuln_variant/vulnerable_before.log0.5 KB
bundle/logs/vuln_variant/vulnerable_after.log0.5 KB
bundle/logs/vuln_variant/fixed_before.log0.5 KB
bundle/logs/vuln_variant/fixed_after.log0.5 KB