EIP-2026-100817

PRE-CVE

i-dreams GB 5.4 Final - 'admin.dat' File Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100817. PoCs published by Pouya_Server.

AI-analyzed exploit summary The exploit reveals a path disclosure vulnerability in i-dreams.net GB 5.4 Final, allowing unauthorized access to sensitive admin data files. The PoC demonstrates direct access to the admin.dat file, which may contain credentials or configuration details.

Description

i-dreams GB 5.4 Final - 'admin.dat' File Disclosure

Exploits (1)

exploitdb INFO LEAK VERIFIED

by Pouya_Server · textwebappscgi

https://www.exploit-db.com/exploits/8086

View Code ZIP pw:eip

The exploit reveals a path disclosure vulnerability in i-dreams.net GB 5.4 Final, allowing unauthorized access to sensitive admin data files. The PoC demonstrates direct access to the admin.dat file, which may contain credentials or configuration details.

Classification

Info Leak 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: i-dreams.net GB 5.4 Final

No auth needed

Prerequisites: Target running i-dreams.net GB 5.4 Final · Access to the /firebook/data/admdat/admin.dat path

MITRE ATT&CK

T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026