EIP-2026-111636

This exploit demonstrates a SQL injection vulnerability in Quick Count 2.0 via the 'txtInstID' parameter in QCVote.php. The PoC includes a crafted HTTP POST request that extracts database information such as user, database name, and version.