EIP-2026-101999

PRE-CVE

Sielco PolyEco Digital FM Transmitter 2.0.6 - Radio Data System POST Manipulation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101999. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates an improper access control vulnerability in Sielco PolyEco Digital FM Transmitter, allowing unauthorized manipulation of RDS (Radio Data System) text display via crafted HTTP POST requests. The PoC bypasses authorization to modify RDS parameters without validation.

Description

Sielco PolyEco Digital FM Transmitter 2.0.6 - Radio Data System POST Manipulation

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · textwebappshardware

https://www.exploit-db.com/exploits/51369

View Code ZIP pw:eip

This exploit demonstrates an improper access control vulnerability in Sielco PolyEco Digital FM Transmitter, allowing unauthorized manipulation of RDS (Radio Data System) text display via crafted HTTP POST requests. The PoC bypasses authorization to modify RDS parameters without validation.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Sielco PolyEco Digital FM Transmitter (versions 2.0.6, 1.9.4, 1.9.3, 1.7.0, 2.0.2, 2.0.0)

No auth needed

Prerequisites: Network access to the target device · Knowledge of the target's IP/hostname

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026