EIP-2026-111837

PRE-CVE

RunCMS 2ma - 'post.php' SQL Injection

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-111837. PoCs published by bookoo.

AI-analyzed exploit summary This PHP script exploits a semi-blind SQL injection vulnerability in RunCms v2M1's forum module, allowing extraction of admin credentials and potential shell upload via INTO DUMPFILE. It includes authentication handling and proxy support.

Description

RunCMS 2ma - 'post.php' SQL Injection

Exploits (1)

exploitdb WORKING POC VERIFIED

by bookoo · textwebappsphp

https://www.exploit-db.com/exploits/9965

View Code ZIP pw:eip

This PHP script exploits a semi-blind SQL injection vulnerability in RunCms v2M1's forum module, allowing extraction of admin credentials and potential shell upload via INTO DUMPFILE. It includes authentication handling and proxy support.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: RunCms v2M1

Auth required

Prerequisites: Valid user account · Existing forum entries · MySQL 5.0+ for table prefix extraction

MITRE ATT&CK

T1189 - Drive-by Compromise T1505 - Server Software Component

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026