EIP-2026-108630

This exploit demonstrates a Local File Inclusion (LFI) vulnerability in Joomla! Component Easy Shop 1.2.3. It uses base64-encoded path traversal sequences to read arbitrary files, such as /etc/passwd, via the 'file' parameter in the 'ajax.loadImage' task.