EIP-2026-110328

PRE-CVE

OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-110328. PoCs published by Alejandro Ramos.

AI-analyzed exploit summary The exploit demonstrates multiple XSS vulnerabilities in OpenText LiveLink by providing crafted URLs that inject arbitrary script code due to insufficient input sanitization. The PoC includes specific attack vectors targeting different endpoints and parameters.

Description

OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities

Exploits (1)

exploitdb WORKING POC VERIFIED

by Alejandro Ramos · textwebappsphp

https://www.exploit-db.com/exploits/34699

View Code ZIP pw:eip

The exploit demonstrates multiple XSS vulnerabilities in OpenText LiveLink by providing crafted URLs that inject arbitrary script code due to insufficient input sanitization. The PoC includes specific attack vectors targeting different endpoints and parameters.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: OpenText LiveLink 9.7.1

No auth needed

Prerequisites: Access to the target application's URL

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026