EIP-2026-118908

PRE-CVE

MiniHTTPServer Web Forums Server 1.x/2.0 - Directory Traversal

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-118908. PoCs published by dr_insane.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in WebForums Server, allowing attackers to access arbitrary files on the host server by manipulating URL paths. The proof-of-concept includes multiple traversal sequences and encoded formats to bypass basic filtering.

Description

MiniHTTPServer Web Forums Server 1.x/2.0 - Directory Traversal

Exploits (1)

exploitdb WORKING POC VERIFIED

by dr_insane · textremotewindows

https://www.exploit-db.com/exploits/22795

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in WebForums Server, allowing attackers to access arbitrary files on the host server by manipulating URL paths. The proof-of-concept includes multiple traversal sequences and encoded formats to bypass basic filtering.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: WebForums Server (version unspecified)

No auth needed

Prerequisites: Network access to the target WebForums Server

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026