EIP-2026-110045

PRE-CVE

OneFileCMS 1.1.1 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-110045. PoCs published by mr.pr0n.

AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in OneFileCMS v1.1.1, including XSS, CSRF, and remote code execution. It provides detailed steps and payloads to exploit these vulnerabilities, including stealing session cookies and achieving reverse shell access.

Description

OneFileCMS 1.1.1 - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC

by mr.pr0n · perlwebappsphp

https://www.exploit-db.com/exploits/17706

View Code ZIP pw:eip

This exploit demonstrates multiple vulnerabilities in OneFileCMS v1.1.1, including XSS, CSRF, and remote code execution. It provides detailed steps and payloads to exploit these vulnerabilities, including stealing session cookies and achieving reverse shell access.

Classification

Working Poc 95%

Attack Type

Rce | Xss | Csrf

Complexity

Moderate

Reliability

Reliable

Target: OneFileCMS v1.1.1

Auth required

Prerequisites: Authenticated session · Victim interaction for XSS/CSRF links

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1189 - Drive-by Compromise T1059.004 - Unix Shell

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026