EIP-2026-103345

PRE-CVE

Zeroshell 3.6.0/3.7.0 Net Services - Remote Code Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103345. PoCs published by Ozer Goker.

AI-analyzed exploit summary This exploit demonstrates unauthenticated remote code execution (RCE) in Zeroshell versions 3.6.0 and 3.7.0 via command injection in the 'User', 'x509type', and 'type' parameters of the kerbynet CGI script. The payloads use URL-encoded quotes and ampersands to inject shell commands.

Description

Zeroshell 3.6.0/3.7.0 Net Services - Remote Code Execution

Exploits (1)

exploitdb WORKING POC

by Ozer Goker · textwebappslinux

https://www.exploit-db.com/exploits/41040

View Code ZIP pw:eip

This exploit demonstrates unauthenticated remote code execution (RCE) in Zeroshell versions 3.6.0 and 3.7.0 via command injection in the 'User', 'x509type', and 'type' parameters of the kerbynet CGI script. The payloads use URL-encoded quotes and ampersands to inject shell commands.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Zeroshell 3.6.0 & 3.7.0

No auth needed

Prerequisites: Network access to the target · Zeroshell web interface exposed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026