EIP-2026-101915

PRE-CVE

Pirelli Discus DRG A125g - Local Password Disclosure

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101915. PoCs published by Sebastián Magof.

AI-analyzed exploit summary This Perl script exploits an information disclosure vulnerability in Pirelli Discus DRG A125g routers by fetching the wlbasic.html page and extracting WiFi credentials (SSID, password, and encryption method) via regex pattern matching.

Description

Pirelli Discus DRG A125g - Local Password Disclosure

Exploits (1)

exploitdb WORKING POC

by Sebastián Magof · perlwebappshardware

https://www.exploit-db.com/exploits/29795

View Code ZIP pw:eip

This Perl script exploits an information disclosure vulnerability in Pirelli Discus DRG A125g routers by fetching the wlbasic.html page and extracting WiFi credentials (SSID, password, and encryption method) via regex pattern matching.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Pirelli Discus DRG A125g

No auth needed

Prerequisites: Local network access to the vulnerable router

MITRE ATT&CK

T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026