EXPLOITDB-EDB-17296

EXPLOITDB text VERIFIED WORKING POC

Exploit for EIP-2026-109959 - NoticeBoardPro 1.0 - Multiple Vulnerabilities

AI Analysis

This exploit demonstrates SQL injection and arbitrary file upload vulnerabilities in NoticeBoardPro 1.0. The SQLi PoC writes a PHP shell via UNION-based injection, while the upload PoC bypasses restrictions to deploy a malicious PHP file.

Attack Type

SQLi | RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505 - Server Software Component

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type webapps

Platform php

Language text

Files 1

https://www.exploit-db.com/exploits/17296

Authors

John Leitch AutoSec Tools

Vulnerability

EIP-2026-109959

NoticeBoardPro 1.0 - Multiple Vulnerabilities