EIP-2026-110664
PRE-CVEPHP City Portal Script Software - SQL Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-110664. PoCs published by Don.
AI-analyzed exploit summary This is a writeup describing an SQL injection vulnerability in Php City Portal Script Software version 1.1. The vulnerability allows arbitrary SQL execution via the userName parameter in profile.php, but no actual exploit code is provided.
Description
PHP City Portal Script Software - SQL Injection
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Don · textwebappsphp
https://www.exploit-db.com/exploits/18210
This is a writeup describing an SQL injection vulnerability in Php City Portal Script Software version 1.1. The vulnerability allows arbitrary SQL execution via the userName parameter in profile.php, but no actual exploit code is provided.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target:
Php City Portal Script Software 1.1
Auth required
Prerequisites:
User authentication · Access to profile.php
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026