EIP-2026-113212

PRE-CVE

Web Chat Manager 2.0 - HTML Code Injection

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-113212. PoCs published by Over_G.

AI-analyzed exploit summary This exploit demonstrates an HTML injection vulnerability in Web Chat Manager's user registration page. The attack leverages insufficient input sanitization to inject malicious JavaScript via the 'email' and 'email1' parameters, leading to potential cookie theft or other client-side attacks.

Description

Web Chat Manager 2.0 - HTML Code Injection

Exploits (1)

exploitdb WORKING POC VERIFIED

by Over_G · textwebappsphp

https://www.exploit-db.com/exploits/22421

View Code ZIP pw:eip

This exploit demonstrates an HTML injection vulnerability in Web Chat Manager's user registration page. The attack leverages insufficient input sanitization to inject malicious JavaScript via the 'email' and 'email1' parameters, leading to potential cookie theft or other client-side attacks.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: Web Chat Manager (version unspecified)

No auth needed

Prerequisites: Access to the target's registration page

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026