EIP-2026-100942

PRE-CVE

ZEN Load Balancer - Multiple Vulnerabilities

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100942. PoCs published by Brendan Coles.

AI-analyzed exploit summary The exploit demonstrates multiple command injection vulnerabilities in ZEN Load Balancer via crafted HTTP requests. It includes examples of arbitrary command execution through URL parameters, leading to reverse shell connections.

Description

ZEN Load Balancer - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED
by Brendan Coles · textwebappscgi
https://www.exploit-db.com/exploits/37830

The exploit demonstrates multiple command injection vulnerabilities in ZEN Load Balancer via crafted HTTP requests. It includes examples of arbitrary command execution through URL parameters, leading to reverse shell connections.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: ZEN Load Balancer 2.0 and 3.0 rc1
No auth needed
Prerequisites: Network access to the target · Target running vulnerable ZEN Load Balancer version
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026