EIP-2026-104736

PRE-CVE

jQuery - jui_filter_rules PHP Code Execution

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104736. PoCs published by Timo Schmid.

AI-analyzed exploit summary This advisory details a PHP code execution vulnerability in the jui_filter_rules library, where attacker-controlled input in the 'filter_value_conversion_server_side' parameter allows arbitrary PHP function execution via 'call_user_func_array'. The PoC demonstrates RCE by executing 'shell_exec' to read '/etc/passwd'.

Description

jQuery - jui_filter_rules PHP Code Execution

Exploits (1)

exploitdb WRITEUP
by Timo Schmid · textremotephp
https://www.exploit-db.com/exploits/36124

This advisory details a PHP code execution vulnerability in the jui_filter_rules library, where attacker-controlled input in the 'filter_value_conversion_server_side' parameter allows arbitrary PHP function execution via 'call_user_func_array'. The PoC demonstrates RCE by executing 'shell_exec' to read '/etc/passwd'.

Classification
Writeup 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: jui_filter_rules (versions >= commit b1e795e and < 1.0.6)
No auth needed
Prerequisites: Access to a web application using the vulnerable jui_filter_rules PHP library
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026