EIP-2026-117148

PRE-CVE

Express Zip 2.40 - Directory Traversal

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117148. PoCs published by R-73eN.

AI-analyzed exploit summary This Python script exploits a path traversal vulnerability in Express Zip <= 2.40 by creating a malicious ZIP file that extracts a file to an arbitrary location (e.g., C:\POC.txt) when extracted. The exploit leverages improper validation of '..\' sequences in the ZIP file's internal paths.

Description

Express Zip 2.40 - Directory Traversal

Exploits (1)

exploitdb WORKING POC

by R-73eN · pythonlocalwindows

https://www.exploit-db.com/exploits/39674

View Code ZIP pw:eip

This Python script exploits a path traversal vulnerability in Express Zip <= 2.40 by creating a malicious ZIP file that extracts a file to an arbitrary location (e.g., C:\POC.txt) when extracted. The exploit leverages improper validation of '..\' sequences in the ZIP file's internal paths.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Express Zip <= 2.40

No auth needed

Prerequisites: Express Zip <= 2.40 installed on the target system · User interaction to extract the malicious ZIP file

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026