EIP-2026-112808

PRE-CVE

Tugux CMS 1.2 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-112808. PoCs published by LiquidWorm.

AI-analyzed exploit summary This is a detailed vulnerability report for Tugux CMS 1.2, describing multiple issues including SQL injection, XSS, and local file inclusion. The report includes vulnerable parameters, URLs, and payloads but does not contain functional exploit code.

Description

Tugux CMS 1.2 - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textwebappsphp

https://www.exploit-db.com/exploits/17312

View Code ZIP pw:eip

This is a detailed vulnerability report for Tugux CMS 1.2, describing multiple issues including SQL injection, XSS, and local file inclusion. The report includes vulnerable parameters, URLs, and payloads but does not contain functional exploit code.

Classification

Writeup 90%

Attack Type

Sqli | Xss | Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Tugux CMS 1.2

No auth needed

Prerequisites: Access to the vulnerable web application

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026