EIP-2026-107753

PRE-CVE

iDev Rentals 1.0 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-107753. PoCs published by Vulnerability-Lab.

AI-analyzed exploit summary This is a vulnerability writeup describing multiple persistent XSS vulnerabilities in iDev Rentals v1.0. The vulnerabilities allow remote attackers to inject malicious script code via various parameters in the 'Add Listing', 'Add Category', and 'Add Package' modules.

Description

iDev Rentals 1.0 - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED

by Vulnerability-Lab · textwebappsphp

https://www.exploit-db.com/exploits/22735

View Code ZIP pw:eip

This is a vulnerability writeup describing multiple persistent XSS vulnerabilities in iDev Rentals v1.0. The vulnerabilities allow remote attackers to inject malicious script code via various parameters in the 'Add Listing', 'Add Category', and 'Add Package' modules.

Classification

Writeup 100%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: iDev Rentals v1.0

Auth required

Prerequisites: Low or medium privileged application user account · Low or medium user interaction

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026