EIP-2026-119427
PRE-CVESoftPerfect Bandwidth Manager 2.9.10 - Authentication Bypass
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-119427. PoCs published by Gitsnik.
AI-analyzed exploit summary The exploit demonstrates an authentication bypass vulnerability in SoftPerfect Bandwidth Manager by sending a crafted HTTP request with a malformed 'Authorization: Basic' header. This bypass allows an attacker to retrieve the cleartext password from the application's database without valid credentials.
Description
SoftPerfect Bandwidth Manager 2.9.10 - Authentication Bypass
Exploits (1)
The exploit demonstrates an authentication bypass vulnerability in SoftPerfect Bandwidth Manager by sending a crafted HTTP request with a malformed 'Authorization: Basic' header. This bypass allows an attacker to retrieve the cleartext password from the application's database without valid credentials.