EIP-2026-102115

PRE-CVE

WEMS BEMS 21.3.1 - Undocumented Backdoor Account

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102115. PoCs published by LiquidWorm.

AI-analyzed exploit summary This writeup details an undocumented backdoor account in WEMS BEMS 21.3.1, including hardcoded credentials and a Base64-encoded backdoor user with privilege level 3. It provides authentication bypass details and steps to exploit the vulnerability via HTTP GET requests.

Description

WEMS BEMS 21.3.1 - Undocumented Backdoor Account

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textwebappshardware

https://www.exploit-db.com/exploits/47817

View Code ZIP pw:eip

This writeup details an undocumented backdoor account in WEMS BEMS 21.3.1, including hardcoded credentials and a Base64-encoded backdoor user with privilege level 3. It provides authentication bypass details and steps to exploit the vulnerability via HTTP GET requests.

Classification

Writeup 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: WEMS BEMS 21.3.1 and earlier versions

No auth needed

Prerequisites: Network access to the target system · Knowledge of the backdoor credentials

MITRE ATT&CK

T1078 - Valid Accounts T1110 - Brute Force

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026