EIP-2026-104187
PRE-CVEBlaze Apps 1.x - SQL Injection / HTML Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-104187. PoCs published by AmnPardaz Security Research Team.
AI-analyzed exploit summary The provided text describes SQL injection and HTML injection vulnerabilities in Blaze Apps 1.4.0.051909 and prior. It includes example payloads for both vulnerabilities but lacks functional exploit code.
Description
Blaze Apps 1.x - SQL Injection / HTML Injection
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by AmnPardaz Security Research Team · textwebappsmultiple
https://www.exploit-db.com/exploits/33995
The provided text describes SQL injection and HTML injection vulnerabilities in Blaze Apps 1.4.0.051909 and prior. It includes example payloads for both vulnerabilities but lacks functional exploit code.
Classification
Writeup 90%
Attack Type
Sqli | Xss
Complexity
Trivial
Reliability
Theoretical
Target:
Blaze Apps <= 1.4.0.051909
No auth needed
Prerequisites:
Access to input fields vulnerable to SQLi/XSS
devstral-2 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026