CVE-2018-25209 | OpenBiz Cubi Lite 3.0.8 /bin/controller.php Username sql injection (Exploit 45801 / EDB-45801)

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability was found in OpenBiz Cubi Lite 3.0.8 and classified as critical. This issue affects some unknown processing of the file /bin/controller.php. Such manipulation of the argument Username leads to sql injection.

This vulnerability is listed as CVE-2018-25209. The attack may be performed from remote. In addition, an exploit is available.

CVE-2018-25209 | OpenBiz Cubi Lite 3.0.8 /bin/controller.php Username sql injection (Exploit 45801 / EDB-45801)

Post correlati

CVE-2024-33630 | Piotnet Addons for Elementor Plugin up to 2.4.26 on WordPress cross site scripting

CVE-2022-41137 | Apache Hive 4.0.0-alpha-1 Metastore deserialization

CVE-2025-20705 | MediaTek MT8796 monitor_hang use after free

CVE-2024-1029 | Cogites eReserv 7.7.58 tenancyDetail.php Nom cross site scripting