EIP-2026-109487
PRE-CVEminimal Gallery - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-109487. PoCs published by ayastar.
AI-analyzed exploit summary The document describes multiple XSS vulnerabilities in minimal Gallery 0.8.1 due to improper input sanitization. It lists affected parameters and attack vectors but does not include functional exploit code.
Description
minimal Gallery - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by ayastar · textwebappsphp
https://www.exploit-db.com/exploits/37804
The document describes multiple XSS vulnerabilities in minimal Gallery 0.8.1 due to improper input sanitization. It lists affected parameters and attack vectors but does not include functional exploit code.
Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target:
minimal Gallery 0.8.1
No auth needed
Prerequisites:
Access to the vulnerable web application
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026