EIP-2026-104714

PRE-CVE

AZORult Botnet - SQL Injection

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104714. PoCs published by prsecurity.

AI-analyzed exploit summary This exploit targets a SQL injection vulnerability in Azorult 3.3.1 Dashboard, allowing unauthorized extraction of credentials from the 'passwords' table. It uses XOR encryption to craft payloads and interacts with the target via HTTP POST requests.

Description

AZORult Botnet - SQL Injection

Exploits (1)

exploitdb WORKING POC

by prsecurity · pythonremotephp

https://www.exploit-db.com/exploits/47244

View Code ZIP pw:eip

This exploit targets a SQL injection vulnerability in Azorult 3.3.1 Dashboard, allowing unauthorized extraction of credentials from the 'passwords' table. It uses XOR encryption to craft payloads and interacts with the target via HTTP POST requests.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Azorult 3.3.1 Dashboard

No auth needed

Prerequisites: Target URL of Azorult Dashboard · Proxy configuration (optional)

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026