EIP-2026-100090

PRE-CVE

Acart 2.0 Shopping Cart - Software Backup Dump

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100090. PoCs published by indoushka.

AI-analyzed exploit summary This is a writeup describing an information leakage vulnerability in Acart Shopping Cart Software. It exposes the location of the database file (acart.mdb) which can be directly accessed via URL, leading to potential data exposure.

Description

Acart 2.0 Shopping Cart - Software Backup Dump

Exploits (1)

exploitdb WRITEUP VERIFIED

by indoushka · textwebappsasp

https://www.exploit-db.com/exploits/12424

View Code ZIP pw:eip

This is a writeup describing an information leakage vulnerability in Acart Shopping Cart Software. It exposes the location of the database file (acart.mdb) which can be directly accessed via URL, leading to potential data exposure.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Acart Shopping Cart Software <= 2.0

No auth needed

Prerequisites: Network access to the target web server

MITRE ATT&CK

T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026