EIP-2026-110924

This exploit demonstrates a Cross-Site Scripting (XSS) vulnerability in PHPAUCTION's register.php by injecting malicious JavaScript via the TPL_name and TPL_nick parameters. The payload triggers an alert dialog, confirming the XSS vulnerability.