EIP-2026-105465

PRE-CVE

BigACE 2.7.5 - 'LANGUAGE' Directory Traversal

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-105465. PoCs published by Hossein Hezami.

AI-analyzed exploit summary The provided text describes SQL injection and local file inclusion vulnerabilities in BIGACE Web CMS 2.7.5, detailing the attack vectors and potential impacts without including functional exploit code.

Description

BigACE 2.7.5 - 'LANGUAGE' Directory Traversal

Exploits (1)

exploitdb WRITEUP VERIFIED
by Hossein Hezami · textwebappsphp
https://www.exploit-db.com/exploits/39126

The provided text describes SQL injection and local file inclusion vulnerabilities in BIGACE Web CMS 2.7.5, detailing the attack vectors and potential impacts without including functional exploit code.

Classification
Writeup 90%
Attack Type
Sqli | Info Leak
Complexity
Trivial
Reliability
Theoretical
Target: BIGACE Web CMS 2.7.5
No auth needed
Prerequisites: Access to the vulnerable web application
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026