EIP-2026-109487

PRE-CVE

minimal Gallery - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-109487. PoCs published by ayastar.

AI-analyzed exploit summary The document describes multiple XSS vulnerabilities in minimal Gallery 0.8.1 due to improper input sanitization. It lists affected parameters and attack vectors but does not include functional exploit code.

Description

minimal Gallery - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED
by ayastar · textwebappsphp
https://www.exploit-db.com/exploits/37804

The document describes multiple XSS vulnerabilities in minimal Gallery 0.8.1 due to improper input sanitization. It lists affected parameters and attack vectors but does not include functional exploit code.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: minimal Gallery 0.8.1
No auth needed
Prerequisites: Access to the vulnerable web application
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026