EIP-2026-102262

PRE-CVE

NG WifiTransfer Pro 1.1 - Local File Inclusion

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102262. PoCs published by Vulnerability-Lab.

AI-analyzed exploit summary This is a detailed technical writeup describing a local file include vulnerability in NG WifiTransfer Pro 1.1. The vulnerability allows remote attackers to inject malicious filenames via the upload module, leading to unauthorized file inclusion in the application's file management interface.

Description

NG WifiTransfer Pro 1.1 - Local File Inclusion

Exploits (1)

exploitdb WRITEUP

by Vulnerability-Lab · textwebappsios

https://www.exploit-db.com/exploits/33627

View Code ZIP pw:eip

This is a detailed technical writeup describing a local file include vulnerability in NG WifiTransfer Pro 1.1. The vulnerability allows remote attackers to inject malicious filenames via the upload module, leading to unauthorized file inclusion in the application's file management interface.

Classification

Writeup 95%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: NG WifiTransfer Pro 1.1

Auth required

Prerequisites: Privileged web-application user account · Access to the local WiFi interface

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026