EIP-2026-100474

PRE-CVE

Patient folder (THEME ASP) - SQL Injection

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-100474. PoCs published by SA H4x0r.

AI-analyzed exploit summary This is a writeup describing a SQL injection vulnerability in an ASP-based application, specifically targeting the 'id' parameter in 'profil.asp' or similar pages. It provides examples of SQL injection payloads but does not include executable exploit code.

Description

Patient folder (THEME ASP) - SQL Injection

Exploits (1)

exploitdb WRITEUP VERIFIED
by SA H4x0r · textwebappsasp
https://www.exploit-db.com/exploits/12833

This is a writeup describing a SQL injection vulnerability in an ASP-based application, specifically targeting the 'id' parameter in 'profil.asp' or similar pages. It provides examples of SQL injection payloads but does not include executable exploit code.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Patient folder (THEME ASP)
No auth needed
Prerequisites: Access to the vulnerable ASP page with the 'id' parameter
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026