EIP-2026-106912

This exploit demonstrates a stored XSS vulnerability in Esotalk CMS by injecting malicious JavaScript into a comment via a crafted URL payload. The payload triggers an alert when a user hovers over the injected image link.