EIP-2026-111464

PRE-CVE

Pragyan CMS 2.6.1 - Arbitrary File Upload

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-111464. PoCs published by Dr.KroOoZ.

AI-analyzed exploit summary This is a writeup describing an arbitrary file upload vulnerability in pragyan 2.6.1. It provides the path to the vulnerable upload endpoint but lacks actual exploit code or payload details.

Description

Pragyan CMS 2.6.1 - Arbitrary File Upload

Exploits (1)

exploitdb WRITEUP

by Dr.KroOoZ · textwebappsphp

https://www.exploit-db.com/exploits/18357

View Code ZIP pw:eip

This is a writeup describing an arbitrary file upload vulnerability in pragyan 2.6.1. It provides the path to the vulnerable upload endpoint but lacks actual exploit code or payload details.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: pragyan 2.6.1

No auth needed

Prerequisites: access to the vulnerable endpoint

MITRE ATT&CK

T1105 - Ingress Tool Transfer T1505.003 - Web Shell

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026