EIP-2026-102080

PRE-CVE

Trend Micro Deep Discovery Inspector 3.8/3.7 - Cross-Site Request Forgery

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102080. PoCs published by hyp3rlinx.

AI-analyzed exploit summary This exploit demonstrates multiple CSRF vulnerabilities in Trend Micro Deep Discovery Inspector, allowing attackers to modify settings such as threat scans, whitelisting, email notifications, and system configurations via crafted HTML forms.

Description

Trend Micro Deep Discovery Inspector 3.8/3.7 - Cross-Site Request Forgery

Exploits (1)

exploitdb WORKING POC

by hyp3rlinx · textwebappshardware

https://www.exploit-db.com/exploits/39622

View Code ZIP pw:eip

This exploit demonstrates multiple CSRF vulnerabilities in Trend Micro Deep Discovery Inspector, allowing attackers to modify settings such as threat scans, whitelisting, email notifications, and system configurations via crafted HTML forms.

Classification

Working Poc 95%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: Trend Micro Deep Discovery Inspector V3.8, 3.7

Auth required

Prerequisites: Authenticated user session · Victim visits malicious webpage

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026