EIP-2026-110472

PRE-CVE

Papoo CMS 3.7.3 - (Authenticated) Arbitrary Code Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-110472. PoCs published by RedTeam Pentesting.

AI-analyzed exploit summary This advisory details an authenticated arbitrary code execution vulnerability in Papoo CMS 3.7.3, where users with image upload privileges can bypass file extension checks by uploading a PHP file with a valid GIF header. The exploit leverages the CMS's failure to validate file extensions, allowing PHP code execution when the file is accessed.

Description

Papoo CMS 3.7.3 - (Authenticated) Arbitrary Code Execution

Exploits (1)

exploitdb WRITEUP VERIFIED

by RedTeam Pentesting · textwebappsphp

https://www.exploit-db.com/exploits/9405

View Code ZIP pw:eip

This advisory details an authenticated arbitrary code execution vulnerability in Papoo CMS 3.7.3, where users with image upload privileges can bypass file extension checks by uploading a PHP file with a valid GIF header. The exploit leverages the CMS's failure to validate file extensions, allowing PHP code execution when the file is accessed.

Classification

Writeup 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Papoo CMS 3.7.3

Auth required

Prerequisites: Authenticated user with image upload privileges

MITRE ATT&CK

T1205 - Traffic Signaling T1505.003 - Web Shell

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026