EIP-2026-114340

PRE-CVE

WordPress Theme Magazine Basic - 'id' SQL Injection

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-114340. PoCs published by Novin hack.

AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in the Magazine Basic theme for WordPress, where user-supplied input is not properly sanitized before being used in an SQL query. The example URL demonstrates how an attacker could exploit this issue by injecting malicious SQL code via the 'id' parameter.

Description

WordPress Theme Magazine Basic - 'id' SQL Injection

Exploits (1)

exploitdb WRITEUP VERIFIED
by Novin hack · textwebappsphp
https://www.exploit-db.com/exploits/38057

The provided text describes an SQL injection vulnerability in the Magazine Basic theme for WordPress, where user-supplied input is not properly sanitized before being used in an SQL query. The example URL demonstrates how an attacker could exploit this issue by injecting malicious SQL code via the 'id' parameter.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: WordPress Magazine Basic theme
No auth needed
Prerequisites: WordPress installation with Magazine Basic theme · Access to the vulnerable endpoint
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026