EIP-2026-107468

PRE-CVE

gr blog 1.1.4 - Arbitrary File Upload / Authentication Bypass

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-107468. PoCs published by JosS.

AI-analyzed exploit summary This is a writeup detailing multiple remote vulnerabilities in GR Blog v1.1.4, including file upload bypass and authentication bypass techniques. It provides examples of vulnerable endpoints and methods to exploit them.

Description

gr blog 1.1.4 - Arbitrary File Upload / Authentication Bypass

Exploits (1)

exploitdb WRITEUP VERIFIED

by JosS · textwebappsphp

https://www.exploit-db.com/exploits/7987

View Code ZIP pw:eip

This is a writeup detailing multiple remote vulnerabilities in GR Blog v1.1.4, including file upload bypass and authentication bypass techniques. It provides examples of vulnerable endpoints and methods to exploit them.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: GR Blog v1.1.4

No auth needed

Prerequisites: Access to the target application

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026