EIP-2026-102265

PRE-CVE

OliveOffice Mobile Suite 2.0.3 iOS - Local File Inclusion

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102265. PoCs published by Vulnerability-Lab.

AI-analyzed exploit summary The document describes a file include vulnerability in OliveOffice Mobile Suite 2.0.3 iOS, where the filename parameter in a POST request can be manipulated to include malicious files. The vulnerability allows remote attackers to execute arbitrary file inclusion via the Browse File Upload module.

Description

OliveOffice Mobile Suite 2.0.3 iOS - Local File Inclusion

Exploits (1)

exploitdb WRITEUP

by Vulnerability-Lab · textwebappsios

https://www.exploit-db.com/exploits/28976

View Code ZIP pw:eip

The document describes a file include vulnerability in OliveOffice Mobile Suite 2.0.3 iOS, where the filename parameter in a POST request can be manipulated to include malicious files. The vulnerability allows remote attackers to execute arbitrary file inclusion via the Browse File Upload module.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: OliveOffice Mobile Suite v2.0.3 iOS

No auth needed

Prerequisites: Network access to the vulnerable application · Ability to send crafted POST requests

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026