EIP-2026-109229
PRE-CVELxBlog - Multiple Cross-Site Scripting / SQL Injections
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-109229. PoCs published by Securitylab.ir.
AI-analyzed exploit summary The exploit demonstrates SQL injection and XSS vulnerabilities in LxBlog by providing example URIs that manipulate the database query and inject malicious scripts. The SQLi example uses time-based blind injection to extract password information, while the XSS example shows how arbitrary scripts can be injected.
Description
LxBlog - Multiple Cross-Site Scripting / SQL Injections
Exploits (1)
The exploit demonstrates SQL injection and XSS vulnerabilities in LxBlog by providing example URIs that manipulate the database query and inject malicious scripts. The SQLi example uses time-based blind injection to extract password information, while the XSS example shows how arbitrary scripts can be injected.