EIP-2026-104336

PRE-CVE

MegaBrowser < 0.71b - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104336. PoCs published by GulfTech Security.

AI-analyzed exploit summary The document describes two vulnerabilities in MegaBrowser: a directory traversal flaw allowing unauthorized file access and an FTP user enumeration issue. It provides example URLs and commands to exploit these vulnerabilities but does not include functional exploit code.

Description

MegaBrowser < 0.71b - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by GulfTech Security · textwebappsmultiple

https://www.exploit-db.com/exploits/43443

View Code ZIP pw:eip

The document describes two vulnerabilities in MegaBrowser: a directory traversal flaw allowing unauthorized file access and an FTP user enumeration issue. It provides example URLs and commands to exploit these vulnerabilities but does not include functional exploit code.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: MegaBrowser <= 0.71b

No auth needed

Prerequisites: Network access to the vulnerable MegaBrowser HTTP/FTP server

MITRE ATT&CK

T1006 - Direct Volume Access T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026