EIP-2026-104988

PRE-CVE

Advanced Management For Services Sites - Remote Add Admin

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104988. PoCs published by alnjm33.

AI-analyzed exploit summary This exploit is an HTML form that submits a POST request to add a new admin user in the 'Advneced Management For Services Sites' software. It bypasses authentication by directly submitting user details to the admin panel's user addition endpoint.

Description

Advanced Management For Services Sites - Remote Add Admin

Exploits (1)

exploitdb WORKING POC

by alnjm33 · htmlwebappsphp

https://www.exploit-db.com/exploits/12031

View Code ZIP pw:eip

This exploit is an HTML form that submits a POST request to add a new admin user in the 'Advneced Management For Services Sites' software. It bypasses authentication by directly submitting user details to the admin panel's user addition endpoint.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Advneced Management For Services Sites 1.0

No auth needed

Prerequisites: Access to the target application's admin panel URL

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026