EIP-2026-108832

PRE-CVE

Joomla! Component Poll 1.0.10 - Arbitrary Add Votes

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-108832. PoCs published by trueend5.

AI-analyzed exploit summary This PHP script exploits a vulnerability in the Joomla poll component to arbitrarily add votes without authentication. It crafts HTTP requests to manipulate poll results by sending POST requests with specific parameters.

Description

Joomla! Component Poll 1.0.10 - Arbitrary Add Votes

Exploits (1)

exploitdb WORKING POC VERIFIED

by trueend5 · phpwebappsphp

https://www.exploit-db.com/exploits/2219

View Code ZIP pw:eip

This PHP script exploits a vulnerability in the Joomla poll component to arbitrarily add votes without authentication. It crafts HTTP requests to manipulate poll results by sending POST requests with specific parameters.

Classification

Working Poc 95%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: Joomla (poll component)

No auth needed

Prerequisites: Joomla installation with poll component · Network access to the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026