EIP-2026-107889

PRE-CVE

Interspire Knowledge Manager 5 - 'callback.snipshot.php' Arbitrary File Creation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-107889. PoCs published by Cory Marsh.

AI-analyzed exploit summary This exploit leverages a file creation vulnerability in Interspire Knowledge Manager by manipulating session cookies and file manager endpoints to create arbitrary files. It uses wget to send crafted requests to the target, allowing an attacker to write files to unintended locations.

Description

Interspire Knowledge Manager 5 - 'callback.snipshot.php' Arbitrary File Creation

Exploits (1)

exploitdb WORKING POC VERIFIED

by Cory Marsh · bashwebappsphp

https://www.exploit-db.com/exploits/33636

View Code ZIP pw:eip

This exploit leverages a file creation vulnerability in Interspire Knowledge Manager by manipulating session cookies and file manager endpoints to create arbitrary files. It uses wget to send crafted requests to the target, allowing an attacker to write files to unintended locations.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Interspire Knowledge Manager 5.1.3

No auth needed

Prerequisites: Target URL · Relative path from admin directory · File name · Content URL

MITRE ATT&CK

T1105 - Ingress Tool Transfer T1204 - User Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026