EIP-2026-111168
PRE-CVEphpMyRecipes - Multiple HTML Injection Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-111168. PoCs published by PDS.
AI-analyzed exploit summary This exploit demonstrates an HTML injection vulnerability in phpMyRecipes 1.2.2 by injecting malicious script tags into the 'r_name' and 'r_instructions' parameters of a POST request to /recipes/addrecipe.php. The vulnerability allows arbitrary JavaScript execution in the context of the affected site.
Description
phpMyRecipes - Multiple HTML Injection Vulnerabilities
Exploits (1)
This exploit demonstrates an HTML injection vulnerability in phpMyRecipes 1.2.2 by injecting malicious script tags into the 'r_name' and 'r_instructions' parameters of a POST request to /recipes/addrecipe.php. The vulnerability allows arbitrary JavaScript execution in the context of the affected site.