EIP-2026-105191
PRE-CVEApartment Visitors Management System 1.0 - 'email' SQL Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-105191. PoCs published by CANKAT ÇAKMAK.
AI-analyzed exploit summary This exploit demonstrates a time-based blind SQL injection vulnerability in the 'email' parameter of the Apartment Visitors Management System 1.0's forgot-password.php endpoint. The payload uses a SLEEP function to confirm the vulnerability, indicating a MySQL backend.
Description
Apartment Visitors Management System 1.0 - 'email' SQL Injection
Exploits (1)
This exploit demonstrates a time-based blind SQL injection vulnerability in the 'email' parameter of the Apartment Visitors Management System 1.0's forgot-password.php endpoint. The payload uses a SLEEP function to confirm the vulnerability, indicating a MySQL backend.