EIP-2026-107480

PRE-CVE

Graugon Forum 1 - 'id' Command Injection / SQL Injection

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-107480. PoCs published by Osirys.

AI-analyzed exploit summary This Perl script exploits a SQL injection vulnerability in Graugon Forum v1 to extract admin credentials, locate the Apache error log, and inject a PHP shell for remote command execution. It uses UNION-based SQLi to read files and write a malicious PHP payload.

Description

Graugon Forum 1 - 'id' Command Injection / SQL Injection

Exploits (1)

exploitdb WORKING POC VERIFIED

by Osirys · perlwebappsphp

https://www.exploit-db.com/exploits/8089

View Code ZIP pw:eip

This Perl script exploits a SQL injection vulnerability in Graugon Forum v1 to extract admin credentials, locate the Apache error log, and inject a PHP shell for remote command execution. It uses UNION-based SQLi to read files and write a malicious PHP payload.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Graugon Forum v1

No auth needed

Prerequisites: Target must be running Graugon Forum v1 with exposed view_profile.php · Apache error logs must be readable via SQLi

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026