Exploitation Summary
EIP tracks 1 public exploit for EIP-2026-106623. PoCs published by BLack Revenge.
AI-analyzed exploit summary This is a writeup describing an SQL injection vulnerability in E-commerce Group's cat.php. It provides a basic example of exploiting the vulnerability to leak password data from the user table.
Description
E-Commerce Group - 'cat.php' SQL Injection
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by BLack Revenge · textwebappsphp
https://www.exploit-db.com/exploits/12696
This is a writeup describing an SQL injection vulnerability in E-commerce Group's cat.php. It provides a basic example of exploiting the vulnerability to leak password data from the user table.
Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:
E-commerce Group (cat.php)
No auth needed
Prerequisites:
A vulnerable instance of E-commerce Group's software
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026