EIP-2026-111166

PRE-CVE

PHPMyQuote 0.20 - '/index.php' SQL Injection / Cross-Site Scripting

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-111166. PoCs published by Yollubunlar.Org.

AI-analyzed exploit summary The provided text describes SQL injection and XSS vulnerabilities in phpMyQuote 0.20 due to insufficient input sanitization. It includes example URLs demonstrating the vulnerabilities but lacks functional exploit code.

Description

PHPMyQuote 0.20 - '/index.php' SQL Injection / Cross-Site Scripting

Exploits (1)

exploitdb WRITEUP VERIFIED
by Yollubunlar.Org · textwebappsphp
https://www.exploit-db.com/exploits/30572

The provided text describes SQL injection and XSS vulnerabilities in phpMyQuote 0.20 due to insufficient input sanitization. It includes example URLs demonstrating the vulnerabilities but lacks functional exploit code.

Classification
Writeup 90%
Attack Type
Sqli | Xss
Complexity
Trivial
Reliability
Theoretical
Target: phpMyQuote 0.20
No auth needed
Prerequisites: Access to the vulnerable application
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026