EIP-2026-103193

PRE-CVE

PHP RRD Browser 0.2 - 'P' Directory Traversal

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103193. PoCs published by Sebastian Wolfgarten.

AI-analyzed exploit summary The provided text describes a directory traversal vulnerability in php rrd browser versions prior to 0.2.1. The vulnerability allows an attacker to retrieve arbitrary files from the system by manipulating the 'p' parameter in the URL.

Description

PHP RRD Browser 0.2 - 'P' Directory Traversal

Exploits (1)

exploitdb WRITEUP VERIFIED

by Sebastian Wolfgarten · textremotelinux

https://www.exploit-db.com/exploits/29595

View Code ZIP pw:eip

The provided text describes a directory traversal vulnerability in php rrd browser versions prior to 0.2.1. The vulnerability allows an attacker to retrieve arbitrary files from the system by manipulating the 'p' parameter in the URL.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: php rrd browser < 0.2.1

No auth needed

Prerequisites: Access to the vulnerable web application

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026