EIP-2026-101907

PRE-CVE

Option CloudGate CG0192-11897 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101907. PoCs published by LiquidWorm.

AI-analyzed exploit summary The exploit describes an Insecure Direct Object Reference (IDOR) vulnerability in Option CloudGate, allowing unauthorized access to restricted resources. It also includes examples of XSS payloads targeting specific API endpoints.

Description

Option CloudGate CG0192-11897 - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textwebappshardware

https://www.exploit-db.com/exploits/40016

View Code ZIP pw:eip

The exploit describes an Insecure Direct Object Reference (IDOR) vulnerability in Option CloudGate, allowing unauthorized access to restricted resources. It also includes examples of XSS payloads targeting specific API endpoints.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Option CloudGate CG0192-11897 (firmware 2.62.4)

No auth needed

Prerequisites: Network access to the target device

MITRE ATT&CK

T1222 - File and Directory Permissions Modification T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026