EIP-2026-111936

The exploit demonstrates SQL injection vulnerabilities in SchoolDir software via two endpoints: 'search' and 'sortsearch'. The attack involves injecting malicious SQL queries through the 'searchItem' and 'School_type' parameters, respectively.