EIP-2026-108477
PRE-CVEJoomla! Component com_pcchess - Local File Inclusion
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-108477. PoCs published by team_elite.
AI-analyzed exploit summary This exploit demonstrates a Local File Inclusion (LFI) vulnerability in the Joomla component com_pcchess. The PoC shows how an attacker can traverse directories and include arbitrary files (e.g., /etc/passwd) by manipulating the 'controller' parameter with a null byte (%00) to bypass file extension checks.
Description
Joomla! Component com_pcchess - Local File Inclusion
Exploits (1)
This exploit demonstrates a Local File Inclusion (LFI) vulnerability in the Joomla component com_pcchess. The PoC shows how an attacker can traverse directories and include arbitrary files (e.g., /etc/passwd) by manipulating the 'controller' parameter with a null byte (%00) to bypass file extension checks.