EIP-2026-102090

This exploit demonstrates a Local File Inclusion (LFI) and Directory Traversal vulnerability in uc-httpd, allowing attackers to read arbitrary files or list directories on vulnerable IoT devices. The PoC sends a crafted HTTP GET request with traversal sequences to access sensitive files like /etc/passwd.