EIP-2026-100318

PRE-CVE

eWebeditor ASP Version - Multiple Vulnerabilities

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100318. PoCs published by anonymous.

AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in eWebEditor ASP, including arbitrary file upload, directory traversal, database disclosure, and administrator bypass via XSS. The PoC provides direct URLs and form-based payloads to exploit these flaws.

Description

eWebeditor ASP Version - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC
by anonymous · textwebappsasp
https://www.exploit-db.com/exploits/11295

This exploit demonstrates multiple vulnerabilities in eWebEditor ASP, including arbitrary file upload, directory traversal, database disclosure, and administrator bypass via XSS. The PoC provides direct URLs and form-based payloads to exploit these flaws.

Classification
Working Poc 90%
Attack Type
Sqli | Xss | Info Leak | Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: eWebEditor ASP
No auth needed
Prerequisites: Access to the target web application
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026