Vulnerabilities
Report: CVE-2019-25581 - i-doit CMDB 1.12 SQL Injection via objGroupID Parameter
CVE ID :CVE-2019-25581 Published : March 21, 2026, 4:16 p.m. | 23 minutes ago Description :i-doit CMDB 1.12 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the objGroupID parameter. Attackers can send GET requests with crafted SQL payloads in the objGroupID parameter to extract sensitive database information including usernames, database names, and version details. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...