EIP-2026-113297

PRE-CVE

webid 1.0.4 - Multiple Vulnerabilities

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-113297. PoCs published by dun.

AI-analyzed exploit summary This is a detailed technical analysis of multiple vulnerabilities in WeBid <= 1.0.4, including RFI, local file disclosure, and blind SQL injection. It provides code snippets, root cause analysis, and proof-of-concept examples.

Description

webid 1.0.4 - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP VERIFIED
by dun · textwebappsphp
https://www.exploit-db.com/exploits/20580

This is a detailed technical analysis of multiple vulnerabilities in WeBid <= 1.0.4, including RFI, local file disclosure, and blind SQL injection. It provides code snippets, root cause analysis, and proof-of-concept examples.

Classification
Writeup 100%
Attack Type
Rce | Info Leak | Sqli
Complexity
Moderate
Reliability
Reliable
Target: WeBid <= 1.0.4
No auth needed
Prerequisites: allow_url_include = On · register_globals = On · magic_quotes_gpc = Off · PHP version < 5.3.4
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026