EIP-2026-104285

PRE-CVE

Interscan Web Security Virtual Appliance 5.0 - Arbitrary File Download

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104285. PoCs published by Ivan Huertas.

AI-analyzed exploit summary The advisory describes an arbitrary file download vulnerability in InterScan Web Security Virtual Appliance 5.0 due to improper path validation in the 'exportreport' and 'ConfigBackup' servlets, allowing path traversal via the 'exportname' and 'pkg_name' parameters. The document provides technical details but does not include functional exploit code.

Description

Interscan Web Security Virtual Appliance 5.0 - Arbitrary File Download

Exploits (1)

exploitdb WRITEUP VERIFIED

by Ivan Huertas · textwebappsmultiple

https://www.exploit-db.com/exploits/14001

View Code ZIP pw:eip

The advisory describes an arbitrary file download vulnerability in InterScan Web Security Virtual Appliance 5.0 due to improper path validation in the 'exportreport' and 'ConfigBackup' servlets, allowing path traversal via the 'exportname' and 'pkg_name' parameters. The document provides technical details but does not include functional exploit code.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: InterScan Web Security Virtual Appliance 5.0

No auth needed

Prerequisites: Network access to the vulnerable servlet

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026