EIP-2026-106698

This PHP script exploits a SQL injection vulnerability in Easy Media Script by injecting a UNION-based payload to extract database information, including user credentials. It also demonstrates an XSS vulnerability in the same application.