EIP-2026-105427
PRE-CVEbcoos 1.0.10 Arcade Module - 'index.php' SQL Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-105427. PoCs published by nights shadow.
AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in the bcoos Arcade module, where the 'gid' parameter in the 'play_game' action is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to unauthorized data access or modification.
Description
bcoos 1.0.10 Arcade Module - 'index.php' SQL Injection
Exploits (1)
The provided text describes an SQL injection vulnerability in the bcoos Arcade module, where the 'gid' parameter in the 'play_game' action is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to unauthorized data access or modification.