EIP-2026-113144

PRE-CVE

Vote! Pro 4.0 - Multiple PHP Code Execution Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-113144. PoCs published by r0ut3r.

AI-analyzed exploit summary This script exploits a session hijacking vulnerability in VoIP phones using the Aredfox PA168 chipset. It repeatedly sends a forged request to the admin web console to steal credentials when a superuser session is active.

Description

Vote! Pro 4.0 - Multiple PHP Code Execution Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by r0ut3r · bashwebappsphp

https://www.exploit-db.com/exploits/29508

View Code ZIP pw:eip

This script exploits a session hijacking vulnerability in VoIP phones using the Aredfox PA168 chipset. It repeatedly sends a forged request to the admin web console to steal credentials when a superuser session is active.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: VoIP phones with Aredfox PA168 chipset (e.g., ATCOM AT-320ED, SOYO G668) running SIP Firmware V1.42 and 1.54

No auth needed

Prerequisites: Network access to the target VoIP phone · Superuser session must be active on the target device

MITRE ATT&CK

T1187 - Forced Authentication T1557 - Adversary-in-the-Middle

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026