Approved changes feed: RSS · Atom

cpe:2.3:a:alienor:alienor_web_libre:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAlienor (20d02091-a610-54e9-b4a5-ad1a83114040)
ProductAlienor Web Libre (dab4e7ad-f96e-5daf-9f14-32b078c4f8b9)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-25175 vulnerable 2026-06-08 05:11:29.533353 Alienor Web Libre 2.0 SQL Injection via index.php
HIGH (8.2)
Alienor Web Libre 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the identifiant parameter. Attackers can submit crafted POST requests to index.php with SQL injection payloads in the identifiant field to extract sensitive database information including usernames, databases, and version details.
Published: 2026-03-06T12:19:05.810Z
Updated: 2026-03-09T15:25:51.861Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.