EIP-2026-110025

PRE-CVE

Ollance Member Login Script - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-110025. PoCs published by $#4d0\/\/[r007k17].

AI-analyzed exploit summary This is a writeup describing SQL injection and persistent XSS vulnerabilities in Ollance Member Login Script. It provides exploit examples for authentication bypass and XSS but does not include functional exploit code.

Description

Ollance Member Login Script - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED

by $#4d0\/\/[r007k17] · textwebappsphp

https://www.exploit-db.com/exploits/17466

View Code ZIP pw:eip

This is a writeup describing SQL injection and persistent XSS vulnerabilities in Ollance Member Login Script. It provides exploit examples for authentication bypass and XSS but does not include functional exploit code.

Classification

Writeup 90%

Attack Type

Sqli | Xss | Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Ollance Member Login Script

No auth needed

Prerequisites: access to login page · admin panel access for XSS

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026