EIP-2026-105285

PRE-CVE

atrocore 1.5.25 User interaction - Unauthenticated File upload - RCE

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-105285. PoCs published by nu11secur1ty.

AI-analyzed exploit summary The provided content lacks functional exploit code and instead references external links for payloads and proof. It describes an unauthenticated file upload vulnerability in atrocore 1.5.25 but does not include technical details or actual exploit code.

Description

atrocore 1.5.25 User interaction - Unauthenticated File upload - RCE

Exploits (1)

exploitdb SUSPICIOUS

by nu11secur1ty · textwebappsphp

https://www.exploit-db.com/exploits/51271

View Code ZIP pw:eip

The provided content lacks functional exploit code and instead references external links for payloads and proof. It describes an unauthenticated file upload vulnerability in atrocore 1.5.25 but does not include technical details or actual exploit code.

Classification

Suspicious 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: atrocore 1.5.25

No auth needed

Prerequisites: Access to the 'Create Import Feed' function

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026