EIP-2026-107394
PRE-CVEGetsimple CMS 3.1.2 - 'path' Local File Inclusion
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-107394. PoCs published by PuN!Sh3r.
AI-analyzed exploit summary The code describes a local file inclusion (LFI) vulnerability in GetSimple CMS 3.1.2, where unsanitized user input in the 'path' parameter of 'filebrowser.php' allows arbitrary file access. The advisory lacks exploit code but provides technical details about the vulnerability and its impact.
Description
Getsimple CMS 3.1.2 - 'path' Local File Inclusion
Exploits (1)
The code describes a local file inclusion (LFI) vulnerability in GetSimple CMS 3.1.2, where unsanitized user input in the 'path' parameter of 'filebrowser.php' allows arbitrary file access. The advisory lacks exploit code but provides technical details about the vulnerability and its impact.