EIP-2026-113066

PRE-CVE

Viavi Movie Review - 'id' SQL Injection

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-113066. PoCs published by Ihsan Sencan.

AI-analyzed exploit summary This entry describes a SQL injection vulnerability in Viavi Movie Review software, specifically in the 'genres.php' endpoint via the 'id' parameter. It provides the vulnerable URL structure but lacks exploit code or technical details like payload examples or patch analysis.

Description

Viavi Movie Review - 'id' SQL Injection

Exploits (1)

exploitdb WRITEUP

by Ihsan Sencan · textwebappsphp

https://www.exploit-db.com/exploits/41316

View Code ZIP pw:eip

This entry describes a SQL injection vulnerability in Viavi Movie Review software, specifically in the 'genres.php' endpoint via the 'id' parameter. It provides the vulnerable URL structure but lacks exploit code or technical details like payload examples or patch analysis.

Classification

Writeup 80%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: Viavi Movie Review (version unspecified)

No auth needed

Prerequisites: Access to the vulnerable endpoint · SQL injection payload

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026