EIP-2026-112774
PRE-CVETraidnt up 2.0 - 'cookie' Add Extension Bypass
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-112774. PoCs published by SP4rT.
AI-analyzed exploit summary This HTML-based exploit bypasses Traidnt Up version 2.0's extension restrictions by manipulating a cookie and submitting a crafted POST request to add a 'php' extension, enabling arbitrary file uploads. The attack leverages insufficient authentication checks and improper input validation.
Description
Traidnt up 2.0 - 'cookie' Add Extension Bypass
Exploits (1)
This HTML-based exploit bypasses Traidnt Up version 2.0's extension restrictions by manipulating a cookie and submitting a crafted POST request to add a 'php' extension, enabling arbitrary file uploads. The attack leverages insufficient authentication checks and improper input validation.