EIP-2026-102429

PRE-CVE

Sysaid 20.1.11 b26 - Remote Command Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102429. PoCs published by Ahmed Sherif.

AI-analyzed exploit summary The writeup describes two vulnerabilities in Sysaid 20.1.11 b26: GhostCat (AJP13 protocol exposure) and an unauthenticated file upload leading to RCE. It includes technical details and a proof-of-concept screenshot but lacks exploit code.

Description

Sysaid 20.1.11 b26 - Remote Command Execution

Exploits (1)

exploitdb WRITEUP

by Ahmed Sherif · textwebappsjava

https://www.exploit-db.com/exploits/48188

View Code ZIP pw:eip

The writeup describes two vulnerabilities in Sysaid 20.1.11 b26: GhostCat (AJP13 protocol exposure) and an unauthenticated file upload leading to RCE. It includes technical details and a proof-of-concept screenshot but lacks exploit code.

Classification

Writeup 80%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Sysaid v20.1.11 b26

No auth needed

Prerequisites: Exposed AJP13 protocol · Access to UploadIcon.jsp endpoint

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505.003 - Web Shell

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026