EIP-2026-109029

PRE-CVE

KnowledgeQuest 2.6 - Administration Multiple Authentication Bypass Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-109029. PoCs published by Cod3rZ.

AI-analyzed exploit summary This Perl script exploits authentication bypass vulnerabilities in KnowledgeQuest 2.6 by allowing an attacker to add or edit admin credentials without proper authentication. It sends crafted HTTP POST requests to specific endpoints to manipulate user data.

Description

KnowledgeQuest 2.6 - Administration Multiple Authentication Bypass Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by Cod3rZ · perlwebappsphp

https://www.exploit-db.com/exploits/31719

View Code ZIP pw:eip

This Perl script exploits authentication bypass vulnerabilities in KnowledgeQuest 2.6 by allowing an attacker to add or edit admin credentials without proper authentication. It sends crafted HTTP POST requests to specific endpoints to manipulate user data.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: KnowledgeQuest 2.6

No auth needed

Prerequisites: Network access to the target application · Knowledge of the target's admin endpoints

MITRE ATT&CK

T1110.001 - Password Guessing T1078 - Valid Accounts

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026