EIP-2026-111017

This exploit demonstrates a SQL injection vulnerability in PHPCollab 2.5 by sending a malformed request to the 'deletetopics.php' endpoint. The PoC uses the Mechanize library to craft a request with a single quote in the 'project' parameter, which can lead to SQL syntax errors or potential data leakage.