CVE-2018-25199

HIGH

OOP CMS BLOG 1.0 - Unauthenticated SQL Injection via Search Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-25199. PoCs published by Ihsan Sencan.

AI-analyzed exploit summary The exploit demonstrates SQL injection vulnerabilities in OOP CMS BLOG 1.0 via three endpoints: search.php, page.php, and posts.php. It includes crafted HTTP GET requests that extract database information, schema names, and user credentials through UNION-based SQLi.

Description

OOP CMS BLOG 1.0 contains SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through multiple parameters. Attackers can inject SQL commands via the search parameter in search.php, pageid parameter in page.php, and id parameter in posts.php to extract database information including table names, schema names, and database credentials.

Exploits (1)

exploitdb WORKING POC
by Ihsan Sencan · textwebappsphp
https://www.exploit-db.com/exploits/45799

The exploit demonstrates SQL injection vulnerabilities in OOP CMS BLOG 1.0 via three endpoints: search.php, page.php, and posts.php. It includes crafted HTTP GET requests that extract database information, schema names, and user credentials through UNION-based SQLi.

Classification
Working Poc 100%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: OOP CMS BLOG 1.0
No auth needed
Prerequisites: Access to the target web application
devstral-2 · analyzed Mar 06, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/45799

Scores

CVSS v3 8.2
EPSS 0.0036
EPSS Percentile 27.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-89
Status published
Products (1)
tomalofficial/php_oop_cms_blog 1.0
Published Mar 06, 2026
Tracked Since Mar 06, 2026