EIP-2026-100969

PRE-CVE

m0n0wall 1.33 - Multiple Cross-Site Request Forgery Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100969. PoCs published by Yann CAM.

AI-analyzed exploit summary This exploit demonstrates multiple CSRF vulnerabilities in m0n0wall 1.33, allowing remote command execution and reverse shell establishment via PHP file creation and execution. It leverages unsanitized input in exec.php, diag_ping.php, and exec_ram.php to achieve root access.

Description

m0n0wall 1.33 - Multiple Cross-Site Request Forgery Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by Yann CAM · textwebappsfreebsd

https://www.exploit-db.com/exploits/23202

View Code ZIP pw:eip

This exploit demonstrates multiple CSRF vulnerabilities in m0n0wall 1.33, allowing remote command execution and reverse shell establishment via PHP file creation and execution. It leverages unsanitized input in exec.php, diag_ping.php, and exec_ram.php to achieve root access.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: m0n0wall 1.33

No auth needed

Prerequisites: Target m0n0wall 1.33 instance accessible via web interface · Victim with admin privileges to trigger CSRF

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026