EIP-2026-110655
PRE-CVEPHP Banner Exchange 1.2 - 'signupconfirm.php' Cross-Site Scripting
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-110655. PoCs published by indoushka.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in PHP Banner Exchange 1.2 by injecting a malicious script into the 'bannerurl' parameter. The payload triggers an alert dialog, proving arbitrary JavaScript execution in the context of the affected site.
Description
PHP Banner Exchange 1.2 - 'signupconfirm.php' Cross-Site Scripting
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in PHP Banner Exchange 1.2 by injecting a malicious script into the 'bannerurl' parameter. The payload triggers an alert dialog, proving arbitrary JavaScript execution in the context of the affected site.