EIP-2026-104725
PRE-CVEFAQ Management System v1.0 - 'faq' SQL Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-104725. PoCs published by SoSPiro.
AI-analyzed exploit summary The writeup describes an SQL injection vulnerability in FAQ Management System v1.0, where the 'faq' parameter in delete-faq.php is directly used in a SQL query without sanitization. It includes a proof-of-concept example demonstrating how an attacker could delete a table via crafted input.
Description
FAQ Management System v1.0 - 'faq' SQL Injection
Exploits (1)
The writeup describes an SQL injection vulnerability in FAQ Management System v1.0, where the 'faq' parameter in delete-faq.php is directly used in a SQL query without sanitization. It includes a proof-of-concept example demonstrating how an attacker could delete a table via crafted input.