EIP-2026-106375

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-106375. PoCs published by ACC3SS.

AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in dBlog CMS, where the 'm' parameter in 'storico.asp' is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to unauthorized data access or modification.

Description

dBlog CMS - 'm' SQL Injection

Exploits (1)

exploitdb WRITEUP VERIFIED

by ACC3SS · textwebappsphp

https://www.exploit-db.com/exploits/38748

View Code ZIP pw:eip

The provided text describes an SQL injection vulnerability in dBlog CMS, where the 'm' parameter in 'storico.asp' is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to unauthorized data access or modification.

Classification

Writeup 80%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: dBlog CMS (version unspecified)

No auth needed

Prerequisites: Access to the vulnerable endpoint · Basic knowledge of SQL injection techniques

MITRE ATT&CK

T1105 - Ingress Tool Transfer T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

dBlog CMS - 'm' SQL Injection

Exploitation Summary

Description

Exploits (1)

Details