CVE-2026-3025

HIGH

ShuoRen Smart Heating 1.0.0 - Unrestricted Upload

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-3025. PoCs published by LTX-GOD.

AI-analyzed exploit summary This repository contains a functional proof-of-concept for an unauthenticated file upload vulnerability in Beijing Shuoren Era Smart Heating Platform 1.0.0. The exploit demonstrates uploading a file via a POST request and retrieving it via an exposed path, confirming arbitrary file upload and download capabilities.

Description

A flaw has been found in ShuoRen Smart Heating Integrated Management Platform 1.0.0. Affected by this vulnerability is an unknown functionality of the file /MP/Service/Webservice/ExampleNodeService.asmx. Executing a manipulation of the argument File can lead to unrestricted upload. It is possible to launch the attack remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Exploits (1)

github WORKING POC 2 stars

by LTX-GOD · poc

https://github.com/LTX-GOD/Mycve/tree/main/CVE-2026-3025.md

View Code ZIP pw:eip

This repository contains a functional proof-of-concept for an unauthenticated file upload vulnerability in Beijing Shuoren Era Smart Heating Platform 1.0.0. The exploit demonstrates uploading a file via a POST request and retrieving it via an exposed path, confirming arbitrary file upload and download capabilities.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Beijing Shuoren Era Smart Heating Platform 1.0.0

No auth needed

Prerequisites: network access to the target server

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1078 - Valid Accounts

devstral-2 · analyzed Mar 02, 2026 Full analysis →

References (3)

Core 3

Core References

Permissions Required, VDB Entry vdb-entry technical-description

https://vuldb.com/?id.347381

Permissions Required, VDB Entry signature permissions-required

https://vuldb.com/?ctiid.347381

Permissions Required, VDB Entry third-party-advisory

https://vuldb.com/?submit.756376

Scores

CVSS v3 7.3

EPSS 0.0038

EPSS Percentile 29.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-284 CWE-434

Status published

Products (1)

shuoren/smart_heating_integrated_management_platform 1.0.0

Published Feb 23, 2026

Tracked Since Feb 23, 2026