EIP-2026-105974

This exploit demonstrates a directory traversal vulnerability in CMS ISWEB 3.5.3, allowing unauthorized access to sensitive files like config.php via a crafted URL. The PoC includes a sample request and leaked database credentials.