EIP-2026-111946
PRE-CVEScriptCase - 'scelta_categoria.php' SQL Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-111946. PoCs published by Hossein Hezami.
AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in ScriptCase, where user-supplied input via the 'categoria' parameter in 'scelta_categoria.php' is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to unauthorized data access or modification.
Description
ScriptCase - 'scelta_categoria.php' SQL Injection
Exploits (1)
The provided text describes an SQL injection vulnerability in ScriptCase, where user-supplied input via the 'categoria' parameter in 'scelta_categoria.php' is not properly sanitized. This allows attackers to manipulate SQL queries, potentially leading to unauthorized data access or modification.