EIP-2026-114505

PRE-CVE

Yamamah Photo Gallery 1.1 - Database Information Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-114505. PoCs published by L3b-r1'z.

AI-analyzed exploit summary The exploit describes an information disclosure vulnerability in Yamamah Photo Gallery 1.1.0, where an attacker can download the database via an unauthenticated endpoint. The issue is trivial to exploit but lacks functional code.

Description

Yamamah Photo Gallery 1.1 - Database Information Disclosure

Exploits (1)

exploitdb WRITEUP VERIFIED

by L3b-r1'z · textwebappsphp

https://www.exploit-db.com/exploits/37330

View Code ZIP pw:eip

The exploit describes an information disclosure vulnerability in Yamamah Photo Gallery 1.1.0, where an attacker can download the database via an unauthenticated endpoint. The issue is trivial to exploit but lacks functional code.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Yamamah Photo Gallery 1.1.0

No auth needed

Prerequisites: Network access to the target application

MITRE ATT&CK

T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026