CVE-2018-16385

CRITICAL

ThinkPHP < 5.1.23 - SQL Injection via Query String

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-16385. PoCs published by buzhimingdeaikun.

AI-analyzed exploit summary The repository contains a README file describing a SQL injection and RCE vulnerability (CVE-2018-16385) in ThinkPHP 5.0.24, but no actual exploit code or technical details are provided. The content is limited to a high-level description of the vulnerability and its impact.

Description

ThinkPHP before 5.1.23 allows SQL Injection via the public/index/index/test/index query string.

Exploits (1)

nomisec STUB
by buzhimingdeaikun · poc
https://github.com/buzhimingdeaikun/SQL-ThinkPHP-5.0.24-RCE-

The repository contains a README file describing a SQL injection and RCE vulnerability (CVE-2018-16385) in ThinkPHP 5.0.24, but no actual exploit code or technical details are provided. The content is limited to a high-level description of the vulnerability and its impact.

Classification
Stub 95%
Attack Type
Rce | Sqli
Complexity
Moderate
Reliability
Reliable
Target: ThinkPHP 5.0.24
No auth needed
Prerequisites: Access to a vulnerable ThinkPHP 5.0.24 instance
mistral-large-3 · analyzed Jul 14, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/top-think/framework/issues/1375

Scores

CVSS v3 9.8
EPSS 0.0211
EPSS Percentile 79.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-89
Status published
Products (2)
thinkphp/thinkphp < 5.1.23
topthink/framework 0 - 5.1.23Packagist
Published Sep 03, 2018
Tracked Since Feb 18, 2026