CVE-2018-25341

NVD data not available for this CVE. It may be pending analysis or not yet published.

Related Intelligence (1)

NVD HIGH: CVE-2018-25341 — Smartshop 1 contains a SQL injection vulnerability that allows unauthenticated a...

Smartshop 1 contains a SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id parameter. Attackers can send GET requests to product.php with union-based SQL injection payloads in the id parameter to extract sensitive database information including usernames and database names.

CVE-2018-25341

May 23, 2026NIST NVD