EIP-2026-109533

PRE-CVE

MobPartner Chat - Multiple SQL Injections

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-109533. PoCs published by AtT4CKxT3rR0r1ST.

AI-analyzed exploit summary This exploit demonstrates SQL injection vulnerabilities in MobPartner Chat, allowing attackers to extract admin credentials, FTP credentials, and MySQL user credentials via crafted UNION-based SQL queries.

Description

MobPartner Chat - Multiple SQL Injections

Exploits (1)

exploitdb WORKING POC VERIFIED
by AtT4CKxT3rR0r1ST · textwebappsphp
https://www.exploit-db.com/exploits/11321

This exploit demonstrates SQL injection vulnerabilities in MobPartner Chat, allowing attackers to extract admin credentials, FTP credentials, and MySQL user credentials via crafted UNION-based SQL queries.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: MobPartner Chat (version unspecified)
No auth needed
Prerequisites: Access to the vulnerable chat.php or write.php endpoints
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026