EIP-2026-105718
PRE-CVECar Rental Management System 1.0 - SQL Injection / Local File include
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-105718. PoCs published by Mosaaed.
AI-analyzed exploit summary The exploit demonstrates SQL injection and local file inclusion vulnerabilities in Car Rental Management System 1.0. It includes functional PoC URLs for extracting user credentials via SQLi and reading sensitive files via LFI.
Description
Car Rental Management System 1.0 - SQL Injection / Local File include
Exploits (1)
exploitdb
WORKING POC
by Mosaaed · textwebappsphp
https://www.exploit-db.com/exploits/49177
The exploit demonstrates SQL injection and local file inclusion vulnerabilities in Car Rental Management System 1.0. It includes functional PoC URLs for extracting user credentials via SQLi and reading sensitive files via LFI.
Classification
Working Poc 100%
Attack Type
Sqli | Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
Car Rental Management System 1.0
No auth needed
Prerequisites:
Access to the vulnerable web application
devstral-2 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026