EIP-2026-110128

PRE-CVE

Online Job Portal 1.0 - Cross Site Request Forgery (Add User)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-110128. PoCs published by Ihsan Sencan.

AI-analyzed exploit summary This exploit demonstrates a Cross-Site Request Forgery (CSRF) vulnerability in Online Job Portal 1.0, allowing an attacker to add or edit user accounts with administrative privileges via crafted POST requests.

Description

Online Job Portal 1.0 - Cross Site Request Forgery (Add User)

Exploits (1)

exploitdb WORKING POC

by Ihsan Sencan · textwebappsphp

https://www.exploit-db.com/exploits/48016

View Code ZIP pw:eip

This exploit demonstrates a Cross-Site Request Forgery (CSRF) vulnerability in Online Job Portal 1.0, allowing an attacker to add or edit user accounts with administrative privileges via crafted POST requests.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Online Job Portal 1.0

No auth needed

Prerequisites: Victim must be authenticated and tricked into submitting the malicious request

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026