EIP-2026-100228

PRE-CVE

Compulsive Media CNU5 - 'News.mdb' Database Disclosure

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100228. PoCs published by Security .Net Information.

AI-analyzed exploit summary The provided text describes a database disclosure vulnerability in CNU5 version 1.2, where remote users can download the 'news.mdb' file containing sensitive information. However, it is noted that this is not a vulnerability in the application itself but rather a misconfiguration issue.

Description

Compulsive Media CNU5 - 'News.mdb' Database Disclosure

Exploits (1)

exploitdb WRITEUP VERIFIED
by Security .Net Information · textwebappsasp
https://www.exploit-db.com/exploits/24397

The provided text describes a database disclosure vulnerability in CNU5 version 1.2, where remote users can download the 'news.mdb' file containing sensitive information. However, it is noted that this is not a vulnerability in the application itself but rather a misconfiguration issue.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: CNU5 version 1.2
No auth needed
Prerequisites: Access to the web server hosting the vulnerable application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026