EIP-2026-100802

PRE-CVE

FloosieTek FTGate Mail Server 1.2 - Full Path Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100802. PoCs published by dr_insane.

AI-analyzed exploit summary The exploit describes a server path disclosure vulnerability in FTGate due to improper error handling. The provided URLs demonstrate how an attacker can trigger the vulnerability to leak sensitive path information.

Description

FloosieTek FTGate Mail Server 1.2 - Full Path Disclosure

Exploits (1)

exploitdb WRITEUP VERIFIED

by dr_insane · textwebappscgi

https://www.exploit-db.com/exploits/23914

View Code ZIP pw:eip

The exploit describes a server path disclosure vulnerability in FTGate due to improper error handling. The provided URLs demonstrate how an attacker can trigger the vulnerability to leak sensitive path information.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: FTGate (version not specified)

No auth needed

Prerequisites: Access to the FTGate server

MITRE ATT&CK

T1112 - Modify Registry T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026