EIP-2026-109763
PRE-CVEMyDms 1.4 - SQL Injection / Directory Traversal
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-109763. PoCs published by Jose Antonio.
AI-analyzed exploit summary The document describes SQL injection and directory traversal vulnerabilities in MyDMS. It provides technical details on the vulnerabilities, including example exploit URLs and affected versions.
Description
MyDms 1.4 - SQL Injection / Directory Traversal
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Jose Antonio · textwebappsphp
https://www.exploit-db.com/exploits/24393
The document describes SQL injection and directory traversal vulnerabilities in MyDMS. It provides technical details on the vulnerabilities, including example exploit URLs and affected versions.
Classification
Writeup 90%
Attack Type
Sqli | Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
MyDMS versions prior to 1.4.2 (SQLi) and 1.4.3 (directory traversal)
No auth needed
Prerequisites:
Access to the vulnerable MyDMS instance
devstral-2 · analyzed Feb 18, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026