EIP-2026-106472

PRE-CVE

Disqus Blog Comments - Blind SQL Injection

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-106472. PoCs published by Spy_w4r3.

AI-analyzed exploit summary This is a technical writeup describing a SQL injection vulnerability in the 'Blog Comments Powered By Disqus' plugin. It includes proof-of-concept URLs demonstrating the vulnerability and Google dorks for finding affected sites.

Description

Disqus Blog Comments - Blind SQL Injection

Exploits (1)

exploitdb WRITEUP VERIFIED
by Spy_w4r3 · textwebappsphp
https://www.exploit-db.com/exploits/20913

This is a technical writeup describing a SQL injection vulnerability in the 'Blog Comments Powered By Disqus' plugin. It includes proof-of-concept URLs demonstrating the vulnerability and Google dorks for finding affected sites.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Blog Comments Powered By Disqus (version not specified)
No auth needed
Prerequisites: A vulnerable installation of the 'Blog Comments Powered By Disqus' plugin
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026