EIP-2026-112392
PRE-CVESpitfire 1.0.381 - Cross-Site Scripting / Cross-Site Request Forgery
Title source: legacyDescription
Spitfire 1.0.381 - Cross-Site Scripting / Cross-Site Request Forgery
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Nijel the Destroyer · textwebappsphp
https://www.exploit-db.com/exploits/34321
Details
Status
pre_cve
Tracked Since
Feb 18, 2026