EIP-2026-111732

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-111732. PoCs published by s4va.

AI-analyzed exploit summary This is a proof-of-concept for a SQL injection vulnerability in RedCat Media's index.php. The exploit demonstrates how to inject SQL queries via the contentId parameter to extract database information such as version details.

Description

redcat media - SQL Injection

Exploits (1)

exploitdb WORKING POC VERIFIED

by s4va · textwebappsphp

https://www.exploit-db.com/exploits/10043

View Code ZIP pw:eip

This is a proof-of-concept for a SQL injection vulnerability in RedCat Media's index.php. The exploit demonstrates how to inject SQL queries via the contentId parameter to extract database information such as version details.

Classification

Working Poc 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: RedCat Media CMS (version unspecified)

No auth needed

Prerequisites: A vulnerable instance of RedCat Media CMS with exposed index.php?contentId= parameter

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

redcat media - SQL Injection

Exploitation Summary

Description

Exploits (1)

Details