CYBERHAWK / CVE / CVE-2018-25425

CVE-2018-25425

Yot CMS

HIGH CVSS 8.2 vibe

The flaw

SQL injection vulnerability allows unauthenticated attackers to execute arbitrary SQL queries through aid and cid parameters.

What to do

Update to version newer than 3.3.1 or sanitize aid/cid parameters

▸ Scan my repo for CVE-2018-25425

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-06-05 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits