EIP-2026-100850
PRE-CVEMailspect Control Panel 4.0.5 - Multiple Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-100850. PoCs published by Onur Alanbel (BGA).
AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in Mailspect Control Panel 4.0.5, including remote code execution (RCE) via command injection in the `config_version_cmd` parameter, arbitrary file read (AFR) via path traversal in `log_file` and `log_dir` parameters, and cross-site scripting (XSS) via the `login` parameter.
Description
Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities
Exploits (1)
The exploit demonstrates multiple vulnerabilities in Mailspect Control Panel 4.0.5, including remote code execution (RCE) via command injection in the `config_version_cmd` parameter, arbitrary file read (AFR) via path traversal in `log_file` and `log_dir` parameters, and cross-site scripting (XSS) via the `login` parameter.