Vulnerabilities

Report: CVE-2018-25413 - AiOPMSD Final 1.0.0 SQL Injection via search.php

2026-05-30 0 views admin

CVE ID :CVE-2018-25413 Published : May 30, 2026, 2:55 p.m. | 50 minutes ago Description :AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'q' parameter. Attackers can send GET requests to search.php with crafted SQL payloads to extract sensitive database information including usernames, database names, and version details. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2018-25413

Severity

HIGH

Published

May 30, 2026

Affected Product: php

Impact: SQL injection

🏷️ Tags

report25413aiopmsdfinalinjectionsearchpublishedminutescvesql injection

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2018-25413 - AiOPMSD Final 1.0.0 SQL Injection via search.php

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2018-25411 - MGB OpenSource Guestbook 0.7.0.2 SQL Injection via email.php - Expert Insights

Report: Ultimate Guide: CVE-2018-25410 - SIM-PKH 2.4.1 SQL Injection via media.php id Parameter

Report: CVE-2018-25412 - Delta Sql 1.8.2 Arbitrary File Upload via docs_upload.php (2026)

Report: Essential Guide: CVE-2018-25415 - AiOPMSD Final 1.0.0 SQL Injection via director Parameter

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting