EIP-2026-119335

PRE-CVE

Zervit Web Server 0.4 - Directory Traversals

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119335. PoCs published by Dr_IDE.

AI-analyzed exploit summary The exploit demonstrates a directory traversal vulnerability in zervit Web Server v0.4, allowing remote attackers to access arbitrary files on the server via crafted HTTP requests. The PoC includes specific URLs that can be used to traverse directories and access sensitive files like boot.ini or execute system commands like calc.exe.

Description

Zervit Web Server 0.4 - Directory Traversals

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dr_IDE · textremotewindows

https://www.exploit-db.com/exploits/12582

View Code ZIP pw:eip

The exploit demonstrates a directory traversal vulnerability in zervit Web Server v0.4, allowing remote attackers to access arbitrary files on the server via crafted HTTP requests. The PoC includes specific URLs that can be used to traverse directories and access sensitive files like boot.ini or execute system commands like calc.exe.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: zervit Web Server v0.4

No auth needed

Prerequisites: Target server running zervit Web Server v0.4 · Network access to the target server

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026