Vulnerabilities

Report: Latest: CVE-2018-25418 - AiOPMSD Final 1.0.0 SQL Injection via year.php

2026-05-30 0 views admin

CVE ID :CVE-2018-25418 Published : May 30, 2026, 2:55 p.m. | 50 minutes ago Description :AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the year parameter. Attackers can send GET requests to year.php with crafted SQL payloads in the year parameter to extract sensitive database information including usernames, database names, and version details. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2018-25418

Severity

HIGH

Published

May 30, 2026

Affected Product: php

Impact: SQL injection

🏷️ Tags

reportlatest25418aiopmsdfinalinjectionpublishedminutescvesql injection

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Latest: CVE-2018-25418 - AiOPMSD Final 1.0.0 SQL Injection via year.php

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2018-25411 - MGB OpenSource Guestbook 0.7.0.2 SQL Injection via email.php - Expert Insights

Report: Ultimate Guide: CVE-2018-25410 - SIM-PKH 2.4.1 SQL Injection via media.php id Parameter

Report: CVE-2018-25412 - Delta Sql 1.8.2 Arbitrary File Upload via docs_upload.php (2026)

Report: CVE-2018-25413 - AiOPMSD Final 1.0.0 SQL Injection via search.php

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting