EIP-2026-102296

PRE-CVE

Song Exporter 2.1.1 RS iOS - Local File Inclusion

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102296. PoCs published by Vulnerability-Lab.

AI-analyzed exploit summary This is a vulnerability writeup describing a local file include vulnerability in Song Exporter Pro v2.1.1 iOS app. The vulnerability allows remote attackers to include local files via manipulated artist, album, or filename values in the web interface.

Description

Song Exporter 2.1.1 RS iOS - Local File Inclusion

Exploits (1)

exploitdb WRITEUP

by Vulnerability-Lab · textwebappsios

https://www.exploit-db.com/exploits/30476

View Code ZIP pw:eip

This is a vulnerability writeup describing a local file include vulnerability in Song Exporter Pro v2.1.1 iOS app. The vulnerability allows remote attackers to include local files via manipulated artist, album, or filename values in the web interface.

Classification

Writeup 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Song Exporter Pro v2.1.1 iOS

No auth needed

Prerequisites: Physical device access or restricted user account · Ability to sync files via iTunes with malicious metadata

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026