EIP-2026-112931

PRE-CVE

User Registration & Login and User Management System With admin panel 2.1 - Persistent XSS

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-112931. PoCs published by yusufmalikul.

AI-analyzed exploit summary This exploit demonstrates a persistent XSS vulnerability in User Registration & Login and User Management System With admin panel 2.1. The payload is injected via user registration fields (fname, lname, email, contact) and triggers when an admin views the user list.

Description

User Registration & Login and User Management System With admin panel 2.1 - Persistent XSS

Exploits (1)

exploitdb WORKING POC
by yusufmalikul · textwebappsphp
https://www.exploit-db.com/exploits/48914

This exploit demonstrates a persistent XSS vulnerability in User Registration & Login and User Management System With admin panel 2.1. The payload is injected via user registration fields (fname, lname, email, contact) and triggers when an admin views the user list.

Classification
Working Poc 95%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: User Registration & Login and User Management System With admin panel 2.1
No auth needed
Prerequisites: Access to user registration page · Admin interaction to view user list
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026