Vulnerabilities

Report: CVE-2019-25693 - ResourceSpace 8.6 SQL Injection via collection_edit.php (2026)

2026-04-12 0 views admin

CVE ID :CVE-2019-25693 Published : April 12, 2026, 12:28 p.m. | 37 minutes ago Description :ResourceSpace 8.6 contains an SQL injection vulnerability that allows authenticated attackers to execute arbitrary SQL queries by injecting malicious code through the keywords parameter in collection_edit.php. Attackers can submit POST requests with crafted SQL payloads in the keywords field to extract sensitive database information including schema names, user credentials, and other confidential data. Severity: 7.1 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2019-25693

Severity

HIGH

Published

April 12, 2026

Affected Product: php

Impact: SQL injection

🏷️ Tags

report25693resourcespaceinjectioncollection_editpublishedminutesdescriptioncvesql injection

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2019-25693 - ResourceSpace 8.6 SQL Injection via collection_edit.php (2026)

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2017-20239 - MDwiki Cross-Site Scripting via Location Hash Parameter

Report: Ultimate Guide: CVE-2018-25257 - Adianti Framework 5.5.0 and 5.6.0 SQL Injection via Profile

Report: CVE-2018-25258 - RGui 3.5.0 Local Buffer Overflow SEH DEP Bypass (2026)

Report: CVE-2019-25691 - Faleemi Desktop Software 1.8 Local Buffer Overflow SEH DEP Bypass - 2025 Update

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting