EIP-2026-106409
PRE-CVEDELTAScripts PHPClassifieds - 'rate.php' Blind SQL Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-106409. PoCs published by Hamza 'MizoZ' N..
AI-analyzed exploit summary This is a writeup describing a blind SQL injection vulnerability in DELTAScripts PHPClassifieds via the 'id' parameter in rate.php. It provides an example URL demonstrating the injection but does not include executable exploit code.
Description
DELTAScripts PHPClassifieds - 'rate.php' Blind SQL Injection
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Hamza 'MizoZ' N. · textwebappsphp
https://www.exploit-db.com/exploits/11071
This is a writeup describing a blind SQL injection vulnerability in DELTAScripts PHPClassifieds via the 'id' parameter in rate.php. It provides an example URL demonstrating the injection but does not include executable exploit code.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target:
DELTAScripts PHPClassifieds
No auth needed
Prerequisites:
Access to the rate.php endpoint
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026