EIP-2026-108019
PRE-CVEiTechscripts Freelancer Script 5.11 - 'sk' SQL Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-108019. PoCs published by v3n0m.
AI-analyzed exploit summary This Perl script exploits an SQL injection vulnerability in iTechscripts Freelancer Script v5.11 by injecting a UNION-based query to extract admin credentials. It uses LWP::UserAgent to send a crafted HTTP request to the target's category.php endpoint.
Description
iTechscripts Freelancer Script 5.11 - 'sk' SQL Injection
Exploits (1)
exploitdb
WORKING POC
by v3n0m · perlwebappsphp
https://www.exploit-db.com/exploits/41032
This Perl script exploits an SQL injection vulnerability in iTechscripts Freelancer Script v5.11 by injecting a UNION-based query to extract admin credentials. It uses LWP::UserAgent to send a crafted HTTP request to the target's category.php endpoint.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:
iTechscripts Freelancer Script v5.11
No auth needed
Prerequisites:
Target URL with vulnerable category.php endpoint
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026