EIP-2026-105272

PRE-CVE

Aspect Ratio CMS - Blind SQL Injection

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-105272. PoCs published by Stephan Sattler.

AI-analyzed exploit summary This exploit demonstrates a blind SQL injection vulnerability in the 'nodeId' parameter of the Aspekt Ratio CMS. The PoC provides URLs to test for the vulnerability by manipulating the SQL query logic.

Description

Aspect Ratio CMS - Blind SQL Injection

Exploits (1)

exploitdb WORKING POC VERIFIED

by Stephan Sattler · textwebappsphp

https://www.exploit-db.com/exploits/15205

View Code ZIP pw:eip

This exploit demonstrates a blind SQL injection vulnerability in the 'nodeId' parameter of the Aspekt Ratio CMS. The PoC provides URLs to test for the vulnerability by manipulating the SQL query logic.

Classification

Working Poc 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Aspekt Ratio CMS

No auth needed

Prerequisites: Access to the target URL with the vulnerable parameter

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026