EIP-2026-101882

PRE-CVE

Netgear WNR500 Wireless Router - 'webproc?getpage' Traversal Arbitrary File Access

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101882. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates an authenticated Local File Inclusion (LFI) vulnerability in the NETGEAR WNR500 router (firmware 1.0.7.2) via the 'getpage' parameter in the 'webproc' script. The PoC shows directory traversal to access sensitive files like '/etc/passwd' and '/etc/shadow'.

Description

Netgear WNR500 Wireless Router - 'webproc?getpage' Traversal Arbitrary File Access

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · textwebappshardware

https://www.exploit-db.com/exploits/35325

View Code ZIP pw:eip

This exploit demonstrates an authenticated Local File Inclusion (LFI) vulnerability in the NETGEAR WNR500 router (firmware 1.0.7.2) via the 'getpage' parameter in the 'webproc' script. The PoC shows directory traversal to access sensitive files like '/etc/passwd' and '/etc/shadow'.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: NETGEAR WNR500 (firmware: 1.0.7.2)

Auth required

Prerequisites: Authenticated session on the router · Network access to the router's web interface

MITRE ATT&CK

T1006 - Direct Volume Access T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026