EIP-2026-103526

PRE-CVE

JourneyMap 5.0.0RC2 Ultimate Edition - Resource Consumption (Denial of Service)

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103526. PoCs published by CovertCodes.

AI-analyzed exploit summary This exploit demonstrates a disk-space consumption vulnerability in JourneyMap 5.0.0RC2 by repeatedly triggering screenshot saves via an unauthenticated HTTP request to port 8080. The attack is simple but slow, as it relies on default parameters and lacks depth/resolution control.

Description

JourneyMap 5.0.0RC2 Ultimate Edition - Resource Consumption (Denial of Service)

Exploits (1)

exploitdb WORKING POC
by CovertCodes · textdosmultiple
https://www.exploit-db.com/exploits/35339

This exploit demonstrates a disk-space consumption vulnerability in JourneyMap 5.0.0RC2 by repeatedly triggering screenshot saves via an unauthenticated HTTP request to port 8080. The attack is simple but slow, as it relies on default parameters and lacks depth/resolution control.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: JourneyMap 5.0.0RC2 Ultimate Edition
No auth needed
Prerequisites: JourneyMap client running with web server exposed on port 8080 · Network access to the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026