CVE-2018-7466

HIGH

TestLink < 1.9.16 - Remote Code Execution via DB Login Name Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-7466. PoCs published by Manish Tanwar.

AI-analyzed exploit summary This exploit leverages a vulnerability in TestLink's installation process where PHP code can be injected into the 'TestLink DB login' field, leading to remote code execution. The attacker controls a remote MySQL server to facilitate the injection of malicious PHP code into the config file.

Description

install/installNewDB.php in TestLink through 1.9.16 allows remote attackers to conduct injection attacks by leveraging control over DB LOGIN NAMES data during installation to provide a long, crafted value.

Exploits (1)

exploitdb WORKING POC
by Manish Tanwar · textremotephp
https://www.exploit-db.com/exploits/44226

This exploit leverages a vulnerability in TestLink's installation process where PHP code can be injected into the 'TestLink DB login' field, leading to remote code execution. The attacker controls a remote MySQL server to facilitate the injection of malicious PHP code into the config file.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: TestLink Open Source Test Management <= 1.9.16
No auth needed
Prerequisites: Access to a remote MySQL server configured to accept remote connections · Ability to reach the TestLink installation page
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/44226/
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/44349/

Scores

CVSS v3 7.5
EPSS 0.0636
EPSS Percentile 92.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-94
Status published
Products (1)
testlink/testlink < 1.9.16
Published Feb 25, 2018
Tracked Since Feb 18, 2026