EIP-2026-104918

PRE-CVE

acontent 1.1 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104918. PoCs published by LiquidWorm.

AI-analyzed exploit summary This is a vulnerability writeup detailing multiple SQL injection and XSS vulnerabilities in AContent 1.1. It includes vulnerable scripts, parameters, and example exploit URLs but does not contain executable exploit code.

Description

acontent 1.1 - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textwebappsphp

https://www.exploit-db.com/exploits/17629

View Code ZIP pw:eip

This is a vulnerability writeup detailing multiple SQL injection and XSS vulnerabilities in AContent 1.1. It includes vulnerable scripts, parameters, and example exploit URLs but does not contain executable exploit code.

Classification

Writeup 90%

Attack Type

Sqli | Xss

Complexity

Trivial

Reliability

Theoretical

Target: AContent 1.1 (build r296)

No auth needed

Prerequisites: Access to vulnerable AContent instance

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026