EIP-2026-119078

PRE-CVE

rbot 0.9.14 - '!react' Unauthorized Access

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119078. PoCs published by nks.

AI-analyzed exploit summary The vulnerability in rbot 0.9.14 allows unauthorized access due to insufficient input sanitization, enabling attackers to gain administrative rights and execute Ruby code remotely. The provided example demonstrates a command injection via a crafted IRC message.

Description

rbot 0.9.14 - '!react' Unauthorized Access

Exploits (1)

exploitdb WRITEUP VERIFIED
by nks · textremotewindows
https://www.exploit-db.com/exploits/33935

The vulnerability in rbot 0.9.14 allows unauthorized access due to insufficient input sanitization, enabling attackers to gain administrative rights and execute Ruby code remotely. The provided example demonstrates a command injection via a crafted IRC message.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: rbot 0.9.14
No auth needed
Prerequisites: Access to the IRC channel where rbot is active
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026