EIP-2026-113322

PRE-CVE

Webiz - SQL Injection

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-113322. PoCs published by kannibal615.

AI-analyzed exploit summary This is a writeup detailing a SQL injection vulnerability in Webiz software, specifically in the `index.php` file with parameters `prID` and `apprec`. It provides exploitation steps and SQL queries to extract user credentials.

Description

Webiz - SQL Injection

Exploits (1)

exploitdb WRITEUP
by kannibal615 · textwebappsphp
https://www.exploit-db.com/exploits/12798

This is a writeup detailing a SQL injection vulnerability in Webiz software, specifically in the `index.php` file with parameters `prID` and `apprec`. It provides exploitation steps and SQL queries to extract user credentials.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: Webiz (version not specified)
No auth needed
Prerequisites: Access to the vulnerable Webiz application · Knowledge of the database name
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026