EIP-2026-114186
PRE-CVEWordPress Plugin Webplayer - 'id' SQL Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-114186. PoCs published by Novin hack.
AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in the Webplayer plugin's config.php file, where user-supplied input via the 'id' parameter is not properly sanitized. This allows attackers to manipulate SQL queries, potentially compromising the application or underlying database.
Description
WordPress Plugin Webplayer - 'id' SQL Injection
Exploits (1)
The provided text describes an SQL injection vulnerability in the Webplayer plugin's config.php file, where user-supplied input via the 'id' parameter is not properly sanitized. This allows attackers to manipulate SQL queries, potentially compromising the application or underlying database.