EIP-2026-105027

PRE-CVE

Aim Web Design - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-105027. PoCs published by XroGuE.

AI-analyzed exploit summary This is a technical writeup detailing multiple vulnerabilities (XSS, HTML injection, SQL injection) in Aim Web Design's software, including affected files and demonstration URLs. It provides specific examples of exploit vectors but does not include functional exploit code.

Description

Aim Web Design - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED

by XroGuE · textwebappsphp

https://www.exploit-db.com/exploits/12791

View Code ZIP pw:eip

This is a technical writeup detailing multiple vulnerabilities (XSS, HTML injection, SQL injection) in Aim Web Design's software, including affected files and demonstration URLs. It provides specific examples of exploit vectors but does not include functional exploit code.

Classification

Writeup 90%

Attack Type

Xss | Sqli

Complexity

Trivial

Reliability

Reliable

Target: Aim Web Design (specific version not mentioned)

No auth needed

Prerequisites: Access to vulnerable web application

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026