EIP-2026-111665

PRE-CVE

Ragnarok Online Control Panel 4.3.4 a - Authentication Bypass

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-111665. PoCs published by VaLiuS.

AI-analyzed exploit summary The exploit describes an authentication bypass vulnerability in Ragnarok Online Control Panel (ROCP) due to improper handling of PHP variables. Exploitation could grant administrative access, potentially limited to Apache-hosted instances.

Description

Ragnarok Online Control Panel 4.3.4 a - Authentication Bypass

Exploits (1)

exploitdb WRITEUP VERIFIED
by VaLiuS · textwebappsphp
https://www.exploit-db.com/exploits/26055

The exploit describes an authentication bypass vulnerability in Ragnarok Online Control Panel (ROCP) due to improper handling of PHP variables. Exploitation could grant administrative access, potentially limited to Apache-hosted instances.

Classification
Writeup 80%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Theoretical
Target: Ragnarok Online Control Panel (ROCP)
No auth needed
Prerequisites: ROCP installed on a web server, potentially Apache
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026