EIP-2026-106695

The exploit demonstrates SQL injection and XSS vulnerabilities in Easy File Uploader 1.7 via the 'id' parameter in 'settings-users-edit.php'. It includes multiple SQLi payloads (boolean-based blind, error-based, time-based blind, and UNION query) and an XSS payload.