EIP-2026-104962

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104962. PoCs published by rgod.

AI-analyzed exploit summary This exploit targets PhpOpenChat 3.0.x via SQL injection in ADODB's server.php to write a malicious PHP file (suntzu.php) into the web root, enabling remote command execution. It leverages a specific MySQL configuration (root with no password, 'test' database) and requires the target to expose phpinfo for path discovery.

Description

ADODB < 4.70 (PHPOpenChat 3.0.x) - 'Server.php' SQL Injection

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/1652

View Code ZIP pw:eip

This exploit targets PhpOpenChat 3.0.x via SQL injection in ADODB's server.php to write a malicious PHP file (suntzu.php) into the web root, enabling remote command execution. It leverages a specific MySQL configuration (root with no password, 'test' database) and requires the target to expose phpinfo for path discovery.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: PhpOpenChat 3.0.x

No auth needed

Prerequisites: MySQL with root user and no password · Existent 'test' database · MySQL file write permissions · Exposed phpinfo page · ADODB server.php accessible

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

ADODB < 4.70 (PHPOpenChat 3.0.x) - 'Server.php' SQL Injection

Exploitation Summary

Description

Exploits (1)

Details