EIP-2026-110717

PRE-CVE

PHP Link Manager 1.7 - URL Redirection

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-110717. PoCs published by ITSecTeam.

AI-analyzed exploit summary The exploit demonstrates an open redirect vulnerability in PHP Link Manager Version 1.7 via the 'url' parameter in go.php. This allows attackers to redirect users to arbitrary URLs, potentially facilitating phishing or other attacks.

Description

PHP Link Manager 1.7 - URL Redirection

Exploits (1)

exploitdb WORKING POC VERIFIED

by ITSecTeam · textwebappsphp

https://www.exploit-db.com/exploits/12534

View Code ZIP pw:eip

The exploit demonstrates an open redirect vulnerability in PHP Link Manager Version 1.7 via the 'url' parameter in go.php. This allows attackers to redirect users to arbitrary URLs, potentially facilitating phishing or other attacks.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: PHP Link Manager Version 1.7

No auth needed

Prerequisites: Access to the vulnerable go.php endpoint

MITRE ATT&CK

T1106 - Native API

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026