EIP-2026-106753

PRE-CVE

eclime 1.1 - Bypass / Create and Download Backup

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-106753. PoCs published by indoushka.

AI-analyzed exploit summary This exploit demonstrates an unauthorized backup download vulnerability in eclime v1.1, allowing attackers to download database backups without authentication by manipulating the 'action' and 'file' parameters in the URL.

Description

eclime 1.1 - Bypass / Create and Download Backup

Exploits (1)

exploitdb WORKING POC VERIFIED

by indoushka · textwebappsphp

https://www.exploit-db.com/exploits/12279

View Code ZIP pw:eip

This exploit demonstrates an unauthorized backup download vulnerability in eclime v1.1, allowing attackers to download database backups without authentication by manipulating the 'action' and 'file' parameters in the URL.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: eclime v1.1

No auth needed

Prerequisites: Access to the target's admin/backup.php endpoint

MITRE ATT&CK

T1592 - Gather Victim Host Information T1082 - System Information Discovery

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026