EIP-2026-106751

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-106751. PoCs published by Ihsan Sencan.

AI-analyzed exploit summary The exploit demonstrates SQL injection vulnerabilities in eCardMAX 10.5 via crafted URLs targeting multiple endpoints. The PoC includes payloads that extract database information, confirming the vulnerability's exploitability.

Description

eCardMAX 10.5 - SQL Injection

Exploits (1)

exploitdb WORKING POC

by Ihsan Sencan · textwebappsphp

https://www.exploit-db.com/exploits/42497

View Code ZIP pw:eip

The exploit demonstrates SQL injection vulnerabilities in eCardMAX 10.5 via crafted URLs targeting multiple endpoints. The PoC includes payloads that extract database information, confirming the vulnerability's exploitability.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: eCardMAX 10.5

No auth needed

Prerequisites: Access to the target web application

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 18, 2026 Full analysis →

eCardMAX 10.5 - SQL Injection

Exploitation Summary

Description

Exploits (1)

Details