EIP-2026-100211

PRE-CVE

Code Widgets DataBound Collapsible Menu - 'main.asp' SQL Injection

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100211. PoCs published by Inj3ct0r.

AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in Code Widgets DataBound Collapsible Menu, where user-supplied input via the 'key' parameter in 'main.asp' is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to data compromise or further exploitation of the database.

Description

Code Widgets DataBound Collapsible Menu - 'main.asp' SQL Injection

Exploits (1)

exploitdb WRITEUP VERIFIED
by Inj3ct0r · textwebappsasp
https://www.exploit-db.com/exploits/36065

The provided text describes an SQL injection vulnerability in Code Widgets DataBound Collapsible Menu, where user-supplied input via the 'key' parameter in 'main.asp' is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to data compromise or further exploitation of the database.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Code Widgets DataBound Collapsible Menu
No auth needed
Prerequisites: Access to the vulnerable web application · Ability to send crafted HTTP requests
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026