EIP-2026-105105
PRE-CVEAllomani Audio and Video Library 2.7.0 - Cross-Site Request Forgery (Add Admin)
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-105105. PoCs published by AtT4CKxT3rR0r1ST.
AI-analyzed exploit summary This exploit demonstrates a Cross-Site Request Forgery (CSRF) vulnerability in Audio & Video Library 2.7.0, allowing an attacker to add an admin user via a crafted HTML form. The form submits a POST request with predefined parameters to create a new admin account without requiring authentication.
Description
Allomani Audio and Video Library 2.7.0 - Cross-Site Request Forgery (Add Admin)
Exploits (1)
This exploit demonstrates a Cross-Site Request Forgery (CSRF) vulnerability in Audio & Video Library 2.7.0, allowing an attacker to add an admin user via a crafted HTML form. The form submits a POST request with predefined parameters to create a new admin account without requiring authentication.