EIP-2026-101922

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101922. PoCs published by Orwelllabs.

AI-analyzed exploit summary This is a detailed security advisory describing multiple vulnerabilities in PLANET IP surveillance cameras, including Local File Inclusion (LFI), authentication bypass, sensitive information disclosure, CSRF, XSS, and hardcoded credentials. It provides proof-of-concept examples for each vulnerability but does not include executable exploit code.

Description

PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by Orwelllabs · textwebappshardware

https://www.exploit-db.com/exploits/39672

View Code ZIP pw:eip

This is a detailed security advisory describing multiple vulnerabilities in PLANET IP surveillance cameras, including Local File Inclusion (LFI), authentication bypass, sensitive information disclosure, CSRF, XSS, and hardcoded credentials. It provides proof-of-concept examples for each vulnerability but does not include executable exploit code.

Classification

Writeup 90%

Attack Type

Info Leak | Auth Bypass | Xss | Csrf | Lfi

Complexity

Trivial

Reliability

Reliable

Target: PLANET IP surveillance cameras (models FW-ICA-2500, ICA-2250VT, ICA-4200V, ICA-4500V, ICA-3350V, ICA-5350V, ICA-8350)

No auth needed

Prerequisites: Network access to the vulnerable camera · Knowledge of the camera's IP address

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1087 - Account Discovery T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities

Exploitation Summary

Description

Exploits (1)

Details