EIP-2026-102971

PRE-CVE

RedHat 6.2 - Piranha Virtual Server Package Plaintext Password

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102971. PoCs published by arkth.

AI-analyzed exploit summary The exploit describes an information leakage vulnerability in Red Hat Piranha where password changes are insecurely passed via GET requests, exposing credentials in HTTP logs or network traffic. No executable code is provided, only log examples demonstrating the issue.

Description

RedHat 6.2 - Piranha Virtual Server Package Plaintext Password

Exploits (1)

exploitdb WRITEUP VERIFIED

by arkth · textlocallinux

https://www.exploit-db.com/exploits/20021

View Code ZIP pw:eip

The exploit describes an information leakage vulnerability in Red Hat Piranha where password changes are insecurely passed via GET requests, exposing credentials in HTTP logs or network traffic. No executable code is provided, only log examples demonstrating the issue.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Red Hat Piranha (version unspecified)

No auth needed

Prerequisites: Access to HTTP logs or network traffic

MITRE ATT&CK

T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026