EIP-2026-108227

PRE-CVE

Joomla! Component Camelcitydb2 2.2 - SQL Injection

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-108227. PoCs published by H!tm@N.

AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in the Joomla component Camelcitydb2 (version 2.2). The exploit leverages an unvalidated 'id' parameter in the URL to inject malicious SQL queries, allowing an attacker to extract sensitive information such as usernames and passwords from the database.

Description

Joomla! Component Camelcitydb2 2.2 - SQL Injection

Exploits (1)

exploitdb WORKING POC VERIFIED
by H!tm@N · textwebappsphp
https://www.exploit-db.com/exploits/7775

This exploit demonstrates a SQL injection vulnerability in the Joomla component Camelcitydb2 (version 2.2). The exploit leverages an unvalidated 'id' parameter in the URL to inject malicious SQL queries, allowing an attacker to extract sensitive information such as usernames and passwords from the database.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Joomla with Camelcitydb2 component version 2.2
No auth needed
Prerequisites: Joomla installation with vulnerable Camelcitydb2 component · Network access to the target Joomla instance
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026