Exploitation Summary
EIP tracks 1 public exploit for EIP-2026-105435. PoCs published by Fatih Nacar.
AI-analyzed exploit summary This writeup describes an SQL injection vulnerability in Beauty Salon Management System v1.0, allowing authentication bypass via crafted payloads in the username field. It includes sqlmap results confirming boolean-based and time-based blind SQLi.
Description
Beauty Salon Management System v1.0 - SQLi
Exploits (1)
exploitdb
WRITEUP
by Fatih Nacar · textwebappsphp
https://www.exploit-db.com/exploits/51568
This writeup describes an SQL injection vulnerability in Beauty Salon Management System v1.0, allowing authentication bypass via crafted payloads in the username field. It includes sqlmap results confirming boolean-based and time-based blind SQLi.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:
Beauty Salon Management System v1.0
No auth needed
Prerequisites:
Access to the admin login page
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026