EIP-2026-107514

PRE-CVE

GS Real Estate Portal US/International Module - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-107514. PoCs published by ZoRLu.

AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in the GS Real Estate Portal, including SQL injection, authentication bypass, remote file upload, and XSS. The PoC provides specific URLs and payloads for each exploit.

Description

GS Real Estate Portal US/International Module - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by ZoRLu · textwebappsphp

https://www.exploit-db.com/exploits/7117

View Code ZIP pw:eip

This exploit demonstrates multiple vulnerabilities in the GS Real Estate Portal, including SQL injection, authentication bypass, remote file upload, and XSS. The PoC provides specific URLs and payloads for each exploit.

Classification

Working Poc 90%

Attack Type

Sqli | Auth Bypass | Xss | Other

Complexity

Trivial

Reliability

Reliable

Target: GS Real Estate Portal US and International Module

No auth needed

Prerequisites: Access to the target web application

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter T1078 - Valid Accounts

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026