EIP-2026-102315

PRE-CVE

WiFly 1.0 Pro iOS - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102315. PoCs published by Vulnerability-Lab.

AI-analyzed exploit summary The document describes multiple web vulnerabilities in WiFly 1.0 Pro iOS, including local file include and arbitrary file upload via manipulated filenames in POST requests. Exploitation requires no user interaction but needs the target device to accept the connection.

Description

WiFly 1.0 Pro iOS - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by Vulnerability-Lab · textwebappsios

https://www.exploit-db.com/exploits/26952

View Code ZIP pw:eip

The document describes multiple web vulnerabilities in WiFly 1.0 Pro iOS, including local file include and arbitrary file upload via manipulated filenames in POST requests. Exploitation requires no user interaction but needs the target device to accept the connection.

Classification

Writeup 90%

Attack Type

Other

Complexity

Moderate

Reliability

Theoretical

Target: WiFly Pro 1.0 (iOS)

No auth needed

Prerequisites: Target device must accept the connection · Access to the local network

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026