EIP-2026-107585
PRE-CVEHero Framework - users/login 'Username' Cross-Site Scripting
Title source: legacyDescription
Hero Framework - users/login 'Username' Cross-Site Scripting
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Stefan Schurtz · textwebappsphp
https://www.exploit-db.com/exploits/38142
Details
Status
pre_cve
Tracked Since
Feb 18, 2026