EIP-2026-103915

PRE-CVE

Greenstone - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103915. PoCs published by AkaStep.

AI-analyzed exploit summary This document details multiple vulnerabilities in Greenstone, including file disclosure, XSS, and weak password encryption. It provides examples of exploiting these issues, such as accessing sensitive files and executing arbitrary scripts via XSS.

Description

Greenstone - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED

by AkaStep · textremotemultiple

https://www.exploit-db.com/exploits/38049

View Code ZIP pw:eip

This document details multiple vulnerabilities in Greenstone, including file disclosure, XSS, and weak password encryption. It provides examples of exploiting these issues, such as accessing sensitive files and executing arbitrary scripts via XSS.

Classification

Writeup 90%

Attack Type

Info Leak | Xss

Complexity

Trivial

Reliability

Reliable

Target: Greenstone

No auth needed

Prerequisites: Access to the target Greenstone server

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1059.004 - Unix Shell T1059.007 - JavaScript

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026