Cyber Resilience

CVE-2018-25204

HighPublic PoC

Published: 26 March 2026

Published
26 March 2026
Modified
31 March 2026
KEV Added
Patch
CVSS Score v4 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0054 41.2th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2018-25204 is a high-severity SQL Injection (CWE-89) vulnerability in Wecodex Library Cms. Its CVSS base score is 8.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 41.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and AC-3 (Access Enforcement).

Deeper analysis

CVE-2018-25204 is an SQL injection vulnerability (CWE-89) in Library CMS 1.0, a PHP and MySQL-based library management system. The flaw resides in the admin login endpoint, where the username parameter is vulnerable to injection of SQL code, enabling attackers to manipulate database queries.

Unauthenticated remote attackers can exploit this vulnerability by sending POST requests to the admin login endpoint with boolean-based blind SQL injection payloads in the username field. Successful exploitation allows bypassing authentication and gaining unauthorized access to the system. The CVSS v3.1 base score is 8.2 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N), reflecting high confidentiality impact with low integrity impact and no availability impact.

Advisories and additional details are provided in references including an exploit PoC at https://www.exploit-db.com/exploits/44728, a VulnCheck advisory at https://www.vulncheck.com/advisories/library-cms-sql-injection-via-admin-login, and the software source at https://www.wecodex.com/item/view/library-management-system-in-php-and-mysql/1.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Library CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication by injecting SQL code through the username parameter. Attackers can send POST requests to the admin login endpoint with boolean-based blind SQL injection payloads in…

more

the username field to manipulate database queries and gain unauthorized access.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

CVE-2018-25204 is an unauthenticated SQL injection in a public-facing web application's admin login endpoint, directly enabling exploitation of public-facing applications for authentication bypass and unauthorized access.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2018-25183Same vendor: Wecodex
CVE-2018-25201Same vendor: Wecodex
CVE-2018-25195Same vendor: Wecodex
CVE-2018-25185Same vendor: Wecodex
CVE-2026-24956Shared CWE-89
CVE-2026-33615Shared CWE-89
CVE-2025-28939Shared CWE-89
CVE-2021-47872Shared CWE-89
CVE-2025-28873Shared CWE-89
CVE-2019-25636Shared CWE-89

Affected Assets

wecodex
library cms
1.0

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly requires validation of the username input parameter to block SQL injection payloads in admin login POST requests, preventing query manipulation and authentication bypass.

prevent

Mandates secure identification and authentication for users, addressing authentication bypass via SQL injection in the admin login endpoint.

prevent

Enforces logical access controls to mitigate unauthorized access gained by exploiting SQL injection to manipulate database queries during login.

References