EIP-2026-116028

PRE-CVE

Oxide WebServer 2.0.4 - Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116028. PoCs published by SecPod Research.

AI-analyzed exploit summary This is a technical writeup detailing a remote Denial of Service (DoS) vulnerability in Oxide Webserver v2.0.4 and prior. The vulnerability is triggered by sending crafted HTTP GET requests with specific characters, causing the server to crash.

Description

Oxide WebServer 2.0.4 - Denial of Service

Exploits (1)

exploitdb WRITEUP

by SecPod Research · textdoswindows

https://www.exploit-db.com/exploits/19986

View Code ZIP pw:eip

This is a technical writeup detailing a remote Denial of Service (DoS) vulnerability in Oxide Webserver v2.0.4 and prior. The vulnerability is triggered by sending crafted HTTP GET requests with specific characters, causing the server to crash.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Oxide Webserver v2.0.4 and prior

No auth needed

Prerequisites: Network access to the target server

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026