EIP-2026-104240

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104240. PoCs published by crashbrz.

AI-analyzed exploit summary This writeup describes a SQL injection vulnerability in Engeman software (version 6.x.x and prior) where SQL code can be injected into the username textbox. The impact varies depending on the backend database (Firebird vs. SQL Server).

Description

Engeman 6.x - SQL Injection

Exploits (1)

exploitdb WRITEUP VERIFIED

by crashbrz · textwebappsmultiple

https://www.exploit-db.com/exploits/9819

View Code ZIP pw:eip

This writeup describes a SQL injection vulnerability in Engeman software (version 6.x.x and prior) where SQL code can be injected into the username textbox. The impact varies depending on the backend database (Firebird vs. SQL Server).

Classification

Writeup 80%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: Engeman 6.x.x and prior

No auth needed

Prerequisites: Access to the username input field in Engeman software

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Engeman 6.x - SQL Injection

Exploitation Summary

Description

Exploits (1)

Details