EIP-2026-101759

PRE-CVE

Geutebruck 5.02024 G-Cam/EFD-2250 - 'simple_loglistjs.cgi' Remote Command Execution (Metasploit)

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101759. PoCs published by RandoriSec.

AI-analyzed exploit summary This Metasploit module exploits a command injection vulnerability in Geutebruck's simple_loglistjs.cgi endpoint, allowing unauthenticated remote command execution with root privileges. The exploit crafts a malicious URI with a payload encoded in hex to bypass input validation.

Description

Geutebruck 5.02024 G-Cam/EFD-2250 - 'simple_loglistjs.cgi' Remote Command Execution (Metasploit)

Exploits (1)

exploitdb WORKING POC
by RandoriSec · rubywebappshardware
https://www.exploit-db.com/exploits/44957

This Metasploit module exploits a command injection vulnerability in Geutebruck's simple_loglistjs.cgi endpoint, allowing unauthenticated remote command execution with root privileges. The exploit crafts a malicious URI with a payload encoded in hex to bypass input validation.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Geutebruck G-Cam/EFD-2250 firmware <= 1.12.0.19
No auth needed
Prerequisites: Network access to the target device · Vulnerable firmware version
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026