Exploitation Summary
EIP tracks 1 public exploit for EIP-2026-111697. PoCs published by SNK.
AI-analyzed exploit summary This is a writeup describing a local file inclusion (LFI) vulnerability in React software. The vulnerability allows an attacker to read arbitrary files on the server by manipulating the 'action' parameter in the URL.
Description
React software - Local File Inclusion
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by SNK · textwebappsphp
https://www.exploit-db.com/exploits/11943
This is a writeup describing a local file inclusion (LFI) vulnerability in React software. The vulnerability allows an attacker to read arbitrary files on the server by manipulating the 'action' parameter in the URL.
Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
React software (version unspecified)
No auth needed
Prerequisites:
Access to the vulnerable URL endpoint
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026