EIP-2026-100318
PRE-CVEeWebeditor ASP Version - Multiple Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-100318. PoCs published by anonymous.
AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in eWebEditor ASP, including arbitrary file upload, directory traversal, database disclosure, and administrator bypass via XSS. The PoC provides direct URLs and form-based payloads to exploit these flaws.
Description
eWebeditor ASP Version - Multiple Vulnerabilities
Exploits (1)
exploitdb
WORKING POC
by anonymous · textwebappsasp
https://www.exploit-db.com/exploits/11295
This exploit demonstrates multiple vulnerabilities in eWebEditor ASP, including arbitrary file upload, directory traversal, database disclosure, and administrator bypass via XSS. The PoC provides direct URLs and form-based payloads to exploit these flaws.
Classification
Working Poc 90%
Attack Type
Sqli | Xss | Info Leak | Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target:
eWebEditor ASP
No auth needed
Prerequisites:
Access to the target web application
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026