EIP-2026-104748

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104748. PoCs published by bwall.

AI-analyzed exploit summary This Perl script exploits a remote code execution vulnerability in pBot IRC bots by leveraging the '*' hostauth configuration to authenticate and execute arbitrary PHP code via the 'eval' command. The exploit connects to an IRC server, joins specified channels, and sends crafted messages to trigger the vulnerability.

Description

pBot - Remote Code Execution

Exploits (1)

exploitdb WORKING POC

by bwall · perlremotephp

https://www.exploit-db.com/exploits/20168

View Code ZIP pw:eip

This Perl script exploits a remote code execution vulnerability in pBot IRC bots by leveraging the '*' hostauth configuration to authenticate and execute arbitrary PHP code via the 'eval' command. The exploit connects to an IRC server, joins specified channels, and sends crafted messages to trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: pBot IRC bot (various versions)

Auth required

Prerequisites: IRC server details (host, port, password) · pBot with '*' hostauth configuration · Access to the IRC channel where the bot resides

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1102 - Web Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

pBot - Remote Code Execution

Exploitation Summary

Description

Exploits (1)

Details