EIP-2026-110653

PRE-CVE

PHP Auto Listings Script - Authentication Bypass

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-110653. PoCs published by r45c4l.

AI-analyzed exploit summary This is a writeup describing an SQL injection vulnerability in Pre Car Lister, allowing authentication bypass via crafted input. No actual exploit code is provided, only instructions for manual exploitation.

Description

PHP Auto Listings Script - Authentication Bypass

Exploits (1)

exploitdb WRITEUP VERIFIED

by r45c4l · textwebappsphp

https://www.exploit-db.com/exploits/7042

View Code ZIP pw:eip

This is a writeup describing an SQL injection vulnerability in Pre Car Lister, allowing authentication bypass via crafted input. No actual exploit code is provided, only instructions for manual exploitation.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Pre Car Lister (version unspecified)

No auth needed

Prerequisites: Access to the admin login page

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026