EIP-2026-102515
PRE-CVEOpenCMS 6.0/6.2 - Multiple Unauthorized Access Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-102515. PoCs published by Meder Kydyraliev.
AI-analyzed exploit summary This is a writeup describing multiple unauthorized-access vulnerabilities in OpenCMS due to improper authentication. It lists URLs that can be exploited to view, delete, or modify application data without proper authentication.
Description
OpenCMS 6.0/6.2 - Multiple Unauthorized Access Vulnerabilities
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Meder Kydyraliev · textwebappsjsp
https://www.exploit-db.com/exploits/28278
This is a writeup describing multiple unauthorized-access vulnerabilities in OpenCMS due to improper authentication. It lists URLs that can be exploited to view, delete, or modify application data without proper authentication.
Classification
Writeup 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target:
OpenCMS versions 6.2.1, 6.2, 6.04, 6.03, and prior
No auth needed
Prerequisites:
Access to the target OpenCMS instance
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026