EIP-2026-105316

PRE-CVE

Automated link exchange portal 1.3 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-105316. PoCs published by TiGeR-Dz.

AI-analyzed exploit summary This exploit demonstrates an authentication bypass vulnerability in Automated Link Exchange Portal V1.3 by manipulating the 'userid' cookie to gain admin access and modify profiles.

Description

Automated link exchange portal 1.3 - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by TiGeR-Dz · textwebappsphp

https://www.exploit-db.com/exploits/8904

View Code ZIP pw:eip

This exploit demonstrates an authentication bypass vulnerability in Automated Link Exchange Portal V1.3 by manipulating the 'userid' cookie to gain admin access and modify profiles.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Automated Link Exchange Portal V1.3

No auth needed

Prerequisites: Access to the target website · JavaScript execution in the browser

MITRE ATT&CK

T1189 - Drive-by Compromise T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026