EIP-2026-105884

PRE-CVE

Claroline 1.7.5 - Multiple Remote File Inclusions

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-105884. PoCs published by MajnOoNxHaCkEr.

AI-analyzed exploit summary This is a vulnerability writeup describing remote file inclusion (RFI) vulnerabilities in Claroline 1.7.5. It provides example URLs demonstrating how an attacker could exploit insufficient input sanitization to include arbitrary remote files.

Description

Claroline 1.7.5 - Multiple Remote File Inclusions

Exploits (1)

exploitdb WRITEUP VERIFIED

by MajnOoNxHaCkEr · textwebappsphp

https://www.exploit-db.com/exploits/31782

View Code ZIP pw:eip

This is a vulnerability writeup describing remote file inclusion (RFI) vulnerabilities in Claroline 1.7.5. It provides example URLs demonstrating how an attacker could exploit insufficient input sanitization to include arbitrary remote files.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: Claroline 1.7.5

No auth needed

Prerequisites: Network access to the target application · Ability to host malicious files on a remote server

MITRE ATT&CK

T1189 - Drive-by Compromise T1205 - Traffic Signaling

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026