EIP-2026-100342

PRE-CVE

GotoCode Online Bookstore - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100342. PoCs published by Nathaniel Carew.

AI-analyzed exploit summary This writeup describes a privilege escalation and database download vulnerability in GotoCode Online Bookstore. It provides URLs to exploit the vulnerabilities, including resetting the admin password and downloading the database file.

Description

GotoCode Online Bookstore - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by Nathaniel Carew · textwebappsasp

https://www.exploit-db.com/exploits/17921

View Code ZIP pw:eip

This writeup describes a privilege escalation and database download vulnerability in GotoCode Online Bookstore. It provides URLs to exploit the vulnerabilities, including resetting the admin password and downloading the database file.

Classification

Writeup 90%

Attack Type

Auth Bypass | Info Leak

Complexity

Trivial

Reliability

Reliable

Target: GotoCode Online Bookstore (ASP.NET)

No auth needed

Prerequisites: Default directory structure · Access database configuration

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026