EIP-2026-114424
PRE-CVEXeroneit Library Management System 3.0 - 'category' SQL Injection
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-114424. PoCs published by Sohel Yousef.
AI-analyzed exploit summary This is a writeup describing a SQL injection vulnerability in Xeroneit Library Management System 3.0. The vulnerability occurs in the 'category' parameter of the book endpoint, allowing attackers to inject malicious SQL queries.
Description
Xeroneit Library Management System 3.0 - 'category' SQL Injection
Exploits (1)
exploitdb
WRITEUP
by Sohel Yousef · textwebappsphp
https://www.exploit-db.com/exploits/48328
This is a writeup describing a SQL injection vulnerability in Xeroneit Library Management System 3.0. The vulnerability occurs in the 'category' parameter of the book endpoint, allowing attackers to inject malicious SQL queries.
Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:
Xeroneit Library Management System v3.0
No auth needed
Prerequisites:
Access to the vulnerable endpoint
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
Details
Status
pre_cve
Tracked Since
Feb 18, 2026