EIP-2026-112611

PRE-CVE

TextAds 2.08 Script - Cross-Site Scripting

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-112611. PoCs published by Ashiyane Digital Security Team.

AI-analyzed exploit summary This is a writeup describing a Cross-Site Scripting (XSS) vulnerability in TextAds 2.08. The vulnerability allows an attacker to inject malicious scripts into the 'Title Field' during ad creation, which executes when an administrator reviews the ad.

Description

TextAds 2.08 Script - Cross-Site Scripting

Exploits (1)

exploitdb WRITEUP VERIFIED

by Ashiyane Digital Security Team · textwebappsphp

https://www.exploit-db.com/exploits/17173

View Code ZIP pw:eip

This is a writeup describing a Cross-Site Scripting (XSS) vulnerability in TextAds 2.08. The vulnerability allows an attacker to inject malicious scripts into the 'Title Field' during ad creation, which executes when an administrator reviews the ad.

Classification

Writeup 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: TextAds 2.08

Auth required

Prerequisites: User registration on the target site · Access to the 'NewAds' feature

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026