EIP-2026-116588

PRE-CVE

Xeneo Web Server 2.2.9 - Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116588. PoCs published by badpack3t.

AI-analyzed exploit summary This Perl script exploits a denial-of-service vulnerability in Xeneo Web Server 2.2.9.0 by sending an HTTP GET request with over 4096 '?' characters, causing the server to crash. The exploit is functional and demonstrates the vulnerability effectively.

Description

Xeneo Web Server 2.2.9 - Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by badpack3t · perldoswindows

https://www.exploit-db.com/exploits/22516

View Code ZIP pw:eip

This Perl script exploits a denial-of-service vulnerability in Xeneo Web Server 2.2.9.0 by sending an HTTP GET request with over 4096 '?' characters, causing the server to crash. The exploit is functional and demonstrates the vulnerability effectively.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Xeneo Web Server 2.2.9.0

No auth needed

Prerequisites: Network access to the target web server

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026