EIP-2026-106614
PRE-CVEDZCP (deV!L_z Clanportal) 1.5.4 - Local File Inclusion
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-106614. PoCs published by High-Tech Bridge SA.
AI-analyzed exploit summary The exploit demonstrates a Local File Inclusion (LFI) vulnerability in DZCP 1.5.4 by manipulating the `[prefix]_language` cookie parameter to traverse directories and include arbitrary files. The PoC is minimal but functional, requiring only a crafted cookie to exploit the vulnerability.
Description
DZCP (deV!L_z Clanportal) 1.5.4 - Local File Inclusion
Exploits (1)
The exploit demonstrates a Local File Inclusion (LFI) vulnerability in DZCP 1.5.4 by manipulating the `[prefix]_language` cookie parameter to traverse directories and include arbitrary files. The PoC is minimal but functional, requiring only a crafted cookie to exploit the vulnerability.