EIP-2026-110451

PRE-CVE

Palo Alto Networks Pan-OS 5.0.8 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-110451. PoCs published by Thomas Pollet.

AI-analyzed exploit summary This exploit demonstrates a CSRF vulnerability in Palo Alto Networks PANOS <= 5.0.8, allowing an attacker to upload a malicious certificate containing XSS payloads via the import.certificate.php endpoint. The certificate fields are not properly sanitized, enabling HTML injection into the web interface.

Description

Palo Alto Networks Pan-OS 5.0.8 - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC

by Thomas Pollet · textwebappsphp

https://www.exploit-db.com/exploits/29861

View Code ZIP pw:eip

This exploit demonstrates a CSRF vulnerability in Palo Alto Networks PANOS <= 5.0.8, allowing an attacker to upload a malicious certificate containing XSS payloads via the import.certificate.php endpoint. The certificate fields are not properly sanitized, enabling HTML injection into the web interface.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: Palo Alto Networks PANOS <= 5.0.8

No auth needed

Prerequisites: Victim must visit a malicious webpage or click a crafted link · Target system must be running vulnerable PANOS version

MITRE ATT&CK

T1189 - Drive-by Compromise T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026