EIP-2026-100640

PRE-CVE

Zixforum - ZixForum.mdb Database Disclosure

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100640. PoCs published by Security .Net Information.

AI-analyzed exploit summary The entry describes a database disclosure vulnerability in Zixforum where the 'ZixForum.mdb' file can be accessed remotely, exposing sensitive information including unencrypted credentials. It notes that this is not a vulnerability in the application itself but rather a misconfiguration issue.

Description

Zixforum - ZixForum.mdb Database Disclosure

Exploits (1)

exploitdb WRITEUP VERIFIED
by Security .Net Information · textwebappsasp
https://www.exploit-db.com/exploits/24385

The entry describes a database disclosure vulnerability in Zixforum where the 'ZixForum.mdb' file can be accessed remotely, exposing sensitive information including unencrypted credentials. It notes that this is not a vulnerability in the application itself but rather a misconfiguration issue.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Zixforum (all versions)
No auth needed
Prerequisites: Access to the web server hosting Zixforum · Misconfigured web server allowing direct access to .mdb files
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026