EIP-2026-102493

PRE-CVE

Macromedia JRun 4.0 build 61650 - Administrative Interface Multiple Cross-Site Scripting Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102493. PoCs published by dr_insane.

AI-analyzed exploit summary The provided text describes cross-site scripting (XSS) vulnerabilities in Macromedia JRun's administrative interface due to insufficient sanitization of URI parameters. It includes example URLs demonstrating how an attacker could inject malicious script code.

Description

Macromedia JRun 4.0 build 61650 - Administrative Interface Multiple Cross-Site Scripting Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED

by dr_insane · textwebappsjsp

https://www.exploit-db.com/exploits/23402

View Code ZIP pw:eip

The provided text describes cross-site scripting (XSS) vulnerabilities in Macromedia JRun's administrative interface due to insufficient sanitization of URI parameters. It includes example URLs demonstrating how an attacker could inject malicious script code.

Classification

Writeup 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Theoretical

Target: Macromedia JRun

No auth needed

Prerequisites: Access to the target JRun administrative interface

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026