CVE-2018-25416 Aiopmsd CVE debrief

Who should care

Organizations running AiOPMSD Final 1.0.0; security teams monitoring for SQL injection vulnerabilities in PHP applications; developers maintaining legacy open-source project management systems

Technical summary

The vulnerability exists in country.php where the country parameter is directly incorporated into SQL queries without proper sanitization or parameterization. An unauthenticated remote attacker can send HTTP GET requests with malicious SQL payloads in the country parameter to execute arbitrary SQL commands against the backend database. This enables extraction of sensitive information including database usernames, database names, and version information. The attack requires no authentication, no user interaction, and can be performed over the network with low complexity.

Defensive priority

HIGH

Recommended defensive actions

• Apply input validation and parameterized queries to the country parameter in country.php
• Implement prepared statements to prevent SQL injection attacks
• Review and sanitize all user-supplied input in the application
• Consider web application firewall rules to detect and block SQL injection attempts
• Monitor logs for suspicious GET requests to country.php containing SQL keywords or special characters
• If patching is unavailable, restrict access to country.php or remove the file if non-essential

Evidence notes

The vulnerability is documented through multiple source references including the project homepage, download location, an Exploit-DB entry, and a VulnCheck advisory. The NVD record shows vulnStatus as Received. CVSS 4.0 vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N. Weakness classification: CWE-89.

Official resources