EIP-2026-111335

PRE-CVE

Pligg CMS 1.1.3 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-111335. PoCs published by Jelmer de Hen.

AI-analyzed exploit summary This is a detailed technical analysis of multiple vulnerabilities in Pligg CMS 1.1.3, including file existence exploration, privilege escalation, user function execution, authentication bypass, and salt disclosure. It provides root cause analysis, exploitation techniques, and patch references.

Description

Pligg CMS 1.1.3 - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by Jelmer de Hen · textwebappsphp

https://www.exploit-db.com/exploits/17077

View Code ZIP pw:eip

This is a detailed technical analysis of multiple vulnerabilities in Pligg CMS 1.1.3, including file existence exploration, privilege escalation, user function execution, authentication bypass, and salt disclosure. It provides root cause analysis, exploitation techniques, and patch references.

Classification

Writeup 90%

Attack Type

Other

Complexity

Moderate

Reliability

Reliable

Target: Pligg CMS 1.1.3

No auth needed

Prerequisites: Access to the target Pligg CMS instance · Register globals enabled for user function execution

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1068 - Exploitation for Privilege Escalation T1110 - Brute Force T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026