EIP-2026-106265

PRE-CVE

CSZ CMS Version 1.3.0 - Authenticated Remote Command Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-106265. PoCs published by tmrswrr.

AI-analyzed exploit summary This exploit targets CSZ CMS Version 1.3.0, leveraging an authenticated file upload vulnerability in the admin upgrade functionality to achieve remote command execution. It automates the login process, uploads a malicious PHP file via a ZIP archive, and executes arbitrary commands.

Description

CSZ CMS Version 1.3.0 - Authenticated Remote Command Execution

Exploits (1)

exploitdb WORKING POC

by tmrswrr · pythonwebappsphp

https://www.exploit-db.com/exploits/51863

View Code ZIP pw:eip

This exploit targets CSZ CMS Version 1.3.0, leveraging an authenticated file upload vulnerability in the admin upgrade functionality to achieve remote command execution. It automates the login process, uploads a malicious PHP file via a ZIP archive, and executes arbitrary commands.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: CSZ CMS Version 1.3.0

Auth required

Prerequisites: Valid admin credentials · Access to the admin login page · GeckoDriver for Selenium automation

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026