EIP-2026-111230

PRE-CVE

phpVibe 3.1 - Information Disclosure / Remote File Inclusion

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-111230. PoCs published by indoushka.

AI-analyzed exploit summary The provided content describes multiple vulnerabilities in phpVibe, including information disclosure and remote file inclusion (RFI) vulnerabilities. It outlines the affected parameters and paths but does not include functional exploit code.

Description

phpVibe 3.1 - Information Disclosure / Remote File Inclusion

Exploits (1)

exploitdb WRITEUP VERIFIED

by indoushka · htmlwebappsphp

https://www.exploit-db.com/exploits/38630

View Code ZIP pw:eip

The provided content describes multiple vulnerabilities in phpVibe, including information disclosure and remote file inclusion (RFI) vulnerabilities. It outlines the affected parameters and paths but does not include functional exploit code.

Classification

Writeup 90%

Attack Type

Info Leak | Other

Complexity

Trivial

Reliability

Theoretical

Target: phpVibe 3.1

No auth needed

Prerequisites: Access to the vulnerable phpVibe application

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1006 - Direct Volume Access

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026