EIP-2026-101495

PRE-CVE

Whale Communications e-Gap Security Appliance 2.5 - Login Page Source Code Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101495. PoCs published by Procheckup.

AI-analyzed exploit summary This exploit leverages a source code disclosure vulnerability in the e-GAP appliance by sending an unexpected HTTP TRACE request, which may divulge the source code of the login script. The vulnerability is due to improper handling of HTTP methods.

Description

Whale Communications e-Gap Security Appliance 2.5 - Login Page Source Code Disclosure

Exploits (1)

exploitdb WORKING POC VERIFIED

by Procheckup · textremotehardware

https://www.exploit-db.com/exploits/23545

View Code ZIP pw:eip

This exploit leverages a source code disclosure vulnerability in the e-GAP appliance by sending an unexpected HTTP TRACE request, which may divulge the source code of the login script. The vulnerability is due to improper handling of HTTP methods.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: e-GAP appliance

No auth needed

Prerequisites: Network access to the e-GAP appliance

MITRE ATT&CK

T1082 - System Information Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026