EIP-2026-107007

EIP tracks 1 public exploit for EIP-2026-107007. PoCs published by David F. Madrid.

AI-analyzed exploit summary The exploit demonstrates a cross-site scripting (XSS) vulnerability in Ezboard's 'invitefriends.php3' script by injecting malicious HTML and JavaScript via the 'yourName' parameter. The payload creates a fake login form to phish user credentials.

Ezboard - 'invitefriends.php3' Cross-Site Scripting