EIP-2026-109097

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-109097. PoCs published by Curesec Research Team.

AI-analyzed exploit summary This is a security advisory detailing multiple SQL injection vulnerabilities in LEPTON CMS 2.2.2. It includes Proof of Concept (PoC) requests for three distinct SQL injection points, all requiring elevated privileges.

Description

LEPTON 2.2.2 - SQL Injection

Exploits (1)

exploitdb WRITEUP VERIFIED

by Curesec Research Team · textwebappsphp

https://www.exploit-db.com/exploits/40800

View Code ZIP pw:eip

This is a security advisory detailing multiple SQL injection vulnerabilities in LEPTON CMS 2.2.2. It includes Proof of Concept (PoC) requests for three distinct SQL injection points, all requiring elevated privileges.

Classification

Writeup 100%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: LEPTON CMS 2.2.2

Auth required

Prerequisites: User account with elevated privileges · Access to specific administrative pages

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

LEPTON 2.2.2 - SQL Injection

Exploitation Summary

Description

Exploits (1)

Details