EIP-2026-107560

PRE-CVE

Havij 1.10 - Persistent Cross-Site Scripting

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-107560. PoCs published by hexon.

AI-analyzed exploit summary This is a writeup describing a persistent XSS vulnerability in Havij <=v1.10. It explains how to exploit the vulnerability by injecting XSS code into the target bar and saving the generated HTML file.

Description

Havij 1.10 - Persistent Cross-Site Scripting

Exploits (1)

exploitdb WRITEUP
by hexon · textwebappsphp
https://www.exploit-db.com/exploits/13912

This is a writeup describing a persistent XSS vulnerability in Havij <=v1.10. It explains how to exploit the vulnerability by injecting XSS code into the target bar and saving the generated HTML file.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Moderate
Reliability
Reliable
Target: Havij <=v1.10
No auth needed
Prerequisites: A site vulnerable to both XSS and SQL Injection · Knowledge of column count and string column
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026