EIP-2026-109553

PRE-CVE

Money Transfer Management System 1.0 - Authentication Bypass

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-109553. PoCs published by Aryan Chehreghani.

AI-analyzed exploit summary This exploit demonstrates an authentication bypass in Money Transfer Management System 1.0 via SQL injection in the login form. The payload manipulates the SQL query to bypass authentication by injecting a tautology.

Description

Money Transfer Management System 1.0 - Authentication Bypass

Exploits (1)

exploitdb WORKING POC

by Aryan Chehreghani · textwebappsphp

https://www.exploit-db.com/exploits/50501

View Code ZIP pw:eip

This exploit demonstrates an authentication bypass in Money Transfer Management System 1.0 via SQL injection in the login form. The payload manipulates the SQL query to bypass authentication by injecting a tautology.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Money Transfer Management System 1.0

No auth needed

Prerequisites: Access to the admin login page · Network connectivity to the target

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026