EIP-2026-105224

PRE-CVE

Arcadem Pro - 'articlecat' SQL Injection

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-105224. PoCs published by Hussin X.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in Arcadem Pro via the 'articlecat' parameter, allowing an attacker to extract user credentials and system information. The PoC includes crafted URLs that bypass authentication and retrieve sensitive data from the database.

Description

Arcadem Pro - 'articlecat' SQL Injection

Exploits (1)

exploitdb WORKING POC VERIFIED
by Hussin X · textwebappsphp
https://www.exploit-db.com/exploits/6624

This exploit demonstrates a SQL injection vulnerability in Arcadem Pro via the 'articlecat' parameter, allowing an attacker to extract user credentials and system information. The PoC includes crafted URLs that bypass authentication and retrieve sensitive data from the database.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Arcadem Pro (AMCMS3)
No auth needed
Prerequisites: Access to the target web application
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026