EIP-2026-118477

PRE-CVE

EasyCafe 2.1/2.2 - Security Restriction Bypass

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118477. PoCs published by Mobin Yazarlou.

AI-analyzed exploit summary This exploit demonstrates a security restriction bypass vulnerability in EasyCafe by sending spoofed UDP packets to gain unauthorized access to client computers. The PoC constructs raw IP/UDP packets with a predefined payload to exploit poor authentication mechanisms.

Description

EasyCafe 2.1/2.2 - Security Restriction Bypass

Exploits (1)

exploitdb WORKING POC VERIFIED

by Mobin Yazarlou · cremotewindows

https://www.exploit-db.com/exploits/28360

View Code ZIP pw:eip

This exploit demonstrates a security restriction bypass vulnerability in EasyCafe by sending spoofed UDP packets to gain unauthorized access to client computers. The PoC constructs raw IP/UDP packets with a predefined payload to exploit poor authentication mechanisms.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: TinaSoft EasyCafe versions 2.1.7 to 2.2.14

No auth needed

Prerequisites: network access to the target EasyCafe server · knowledge of target client IP addresses

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1562.004 - Disable or Modify System Firewall

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026