EIP-2026-111665
PRE-CVERagnarok Online Control Panel 4.3.4 a - Authentication Bypass
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-111665. PoCs published by VaLiuS.
AI-analyzed exploit summary The exploit describes an authentication bypass vulnerability in Ragnarok Online Control Panel (ROCP) due to improper handling of PHP variables. Exploitation could grant administrative access, potentially limited to Apache-hosted instances.
Description
Ragnarok Online Control Panel 4.3.4 a - Authentication Bypass
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by VaLiuS · textwebappsphp
https://www.exploit-db.com/exploits/26055
The exploit describes an authentication bypass vulnerability in Ragnarok Online Control Panel (ROCP) due to improper handling of PHP variables. Exploitation could grant administrative access, potentially limited to Apache-hosted instances.
Classification
Writeup 80%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Theoretical
Target:
Ragnarok Online Control Panel (ROCP)
No auth needed
Prerequisites:
ROCP installed on a web server, potentially Apache
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026