Exploitation Summary
EIP tracks 1 public exploit for EIP-2026-102001. PoCs published by Vulnerability-Lab.
AI-analyzed exploit summary This is a vulnerability writeup describing command injection vulnerabilities in SimpleTransfer Photo 2.2.1 iOS app. The vulnerabilities allow local command injection via the device name and album folder name parameters.
Description
SimpleTransfer 2.2.1 - Command Injection
Exploits (1)
exploitdb
WRITEUP
by Vulnerability-Lab · textwebappshardware
https://www.exploit-db.com/exploits/25416
This is a vulnerability writeup describing command injection vulnerabilities in SimpleTransfer Photo 2.2.1 iOS app. The vulnerabilities allow local command injection via the device name and album folder name parameters.
Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target:
SimpleTransfer Photo iOS 2.2.1
Auth required
Prerequisites:
Local access to the iOS device · Ability to change device name or album folder name
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026