EIP-2026-103866

PRE-CVE

Asterisk Recording Interface 0.7.15/0.10 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103866. PoCs published by TurboBorland.

AI-analyzed exploit summary The provided text describes multiple vulnerabilities in the Asterisk Recording Interface, including security bypass, CSRF, and XSS issues. It includes example URIs demonstrating potential exploitation paths but lacks functional exploit code.

Description

Asterisk Recording Interface 0.7.15/0.10 - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED

by TurboBorland · textremotemultiple

https://www.exploit-db.com/exploits/34301

View Code ZIP pw:eip

The provided text describes multiple vulnerabilities in the Asterisk Recording Interface, including security bypass, CSRF, and XSS issues. It includes example URIs demonstrating potential exploitation paths but lacks functional exploit code.

Classification

Writeup 90%

Attack Type

Auth Bypass | Xss | Info Leak

Complexity

Moderate

Reliability

Theoretical

Target: Asterisk Recording Interface

No auth needed

Prerequisites: Access to the target web interface · Knowledge of vulnerable parameters

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026