EIP-2026-106866

PRE-CVE

Employees Daily Task Management System 1.0 - 'multiple' Cross Site Scripting (XSS)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-106866. PoCs published by able403.

AI-analyzed exploit summary The exploit demonstrates stored XSS vulnerabilities in the Employees Daily Task Management System 1.0. It provides functional payloads and HTTP requests to trigger XSS via the 'title', 'Task Description', 'full name', and 'contact' parameters.

Description

Employees Daily Task Management System 1.0 - 'multiple' Cross Site Scripting (XSS)

Exploits (1)

exploitdb WORKING POC

by able403 · textwebappsphp

https://www.exploit-db.com/exploits/50583

View Code ZIP pw:eip

The exploit demonstrates stored XSS vulnerabilities in the Employees Daily Task Management System 1.0. It provides functional payloads and HTTP requests to trigger XSS via the 'title', 'Task Description', 'full name', and 'contact' parameters.

Classification

Working Poc 95%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: Employees Daily Task Management System 1.0

Auth required

Prerequisites: Access to the application · Valid session cookie

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026