EIP-2026-118347
PRE-CVECentrinity FirstClass HTTP Server 5/7 - 'TargetName' Cross-Site Scripting
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-118347. PoCs published by Richard Maudsley.
AI-analyzed exploit summary This is a writeup describing a cross-site scripting (XSS) vulnerability in Centrinity FirstClass HTTP Server. The vulnerability is due to insufficient sanitization of the 'TargetName' parameter in the 'Upload.shtml' script, allowing arbitrary HTML or script code execution in a user's browser.
Description
Centrinity FirstClass HTTP Server 5/7 - 'TargetName' Cross-Site Scripting
Exploits (1)
This is a writeup describing a cross-site scripting (XSS) vulnerability in Centrinity FirstClass HTTP Server. The vulnerability is due to insufficient sanitization of the 'TargetName' parameter in the 'Upload.shtml' script, allowing arbitrary HTML or script code execution in a user's browser.