EIP-2026-118369

PRE-CVE

clearswift MIMEsweeper for Web 4.0/5.0 - Directory Traversal

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118369. PoCs published by Kroma Pierre.

AI-analyzed exploit summary The exploit demonstrates a directory traversal vulnerability in Clearswift MIMEsweeper For Web by crafting HTTP GET requests with various traversal sequences to access files outside the web root, such as boot.ini. The PoC includes multiple payload variations to bypass potential sanitization mechanisms.

Description

clearswift MIMEsweeper for Web 4.0/5.0 - Directory Traversal

Exploits (1)

exploitdb WORKING POC VERIFIED
by Kroma Pierre · textremotewindows
https://www.exploit-db.com/exploits/24363

The exploit demonstrates a directory traversal vulnerability in Clearswift MIMEsweeper For Web by crafting HTTP GET requests with various traversal sequences to access files outside the web root, such as boot.ini. The PoC includes multiple payload variations to bypass potential sanitization mechanisms.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Clearswift MIMEsweeper For Web
No auth needed
Prerequisites: Network access to the vulnerable server
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026