EIP-2026-112281

PRE-CVE

SOA School Management - 'view' SQL Injection

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-112281. PoCs published by Ihsan Sencan.

AI-analyzed exploit summary This is a technical writeup describing an SQL injection vulnerability in Complete School Management Software with Web Portal. It provides details about the vulnerable endpoint and attack vector but does not include functional exploit code.

Description

SOA School Management - 'view' SQL Injection

Exploits (1)

exploitdb WRITEUP

by Ihsan Sencan · textwebappsphp

https://www.exploit-db.com/exploits/41286

View Code ZIP pw:eip

This is a technical writeup describing an SQL injection vulnerability in Complete School Management Software with Web Portal. It provides details about the vulnerable endpoint and attack vector but does not include functional exploit code.

Classification

Writeup 80%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: Complete School Management Software with Web Portal

Auth required

Prerequisites: Access to the vulnerable endpoint · Valid student user credentials

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026