Approved changes feed: RSS · Atom

cpe:2.3:a:aiopmsd:aiopmsd_final:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAiopmsd (9d7b75d8-e2cd-5eeb-8709-88b4726e501c)
ProductAiopmsd Final (b97a43ad-de7e-589b-915a-7a74b12cc029)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-25420 vulnerable 2026-06-08 05:11:29.888784 AiOPMSD Final 1.0.0 SQL Injection via watch.php
HIGH (8.2)
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'id' parameter. Attackers can send GET requests to watch.php with crafted SQL payloads to extract sensitive database information including usernames, database names, and version details.
Published: 2026-05-30T14:55:24.506Z
Updated: 2026-06-01T15:04:30.580Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-25419 vulnerable 2026-06-08 05:11:29.888672 AiOPMSD Final 1.0.0 SQL Injection via genre.php
HIGH (8.2)
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the genre parameter. Attackers can send GET requests to genre.php with crafted SQL payloads in the genre parameter to extract sensitive database information including usernames, database names, and version details.
Published: 2026-05-30T14:55:23.765Z
Updated: 2026-06-01T15:03:08.330Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-25418 vulnerable 2026-06-08 05:11:29.888553 AiOPMSD Final 1.0.0 SQL Injection via year.php
HIGH (8.2)
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the year parameter. Attackers can send GET requests to year.php with crafted SQL payloads in the year parameter to extract sensitive database information including usernames, database names, and version details.
Published: 2026-05-30T14:55:23.060Z
Updated: 2026-06-02T02:10:48.503Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-25417 vulnerable 2026-06-08 05:11:29.888438 AiOPMSD Final 1.0.0 SQL Injection via quality.php
HIGH (8.2)
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the quality parameter. Attackers can send GET requests to quality.php with crafted SQL payloads in the quality parameter to extract sensitive database information including usernames, database names, and version details.
Published: 2026-05-30T14:55:22.355Z
Updated: 2026-06-01T13:40:14.783Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-25416 vulnerable 2026-06-08 05:11:29.888315 AiOPMSD Final 1.0.0 SQL Injection via country.php
HIGH (8.2)
AiOPMSD Final 1.0.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the country parameter. Attackers can send GET requests to country.php with crafted SQL payloads in the country parameter to extract sensitive database information including usernames, database names, and version details.
Published: 2026-05-30T14:55:21.616Z
Updated: 2026-06-01T15:11:45.692Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-25415 vulnerable 2026-06-08 05:11:29.888176 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-25414 vulnerable 2026-06-08 05:11:29.887896 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-25413 vulnerable 2026-06-08 05:11:29.887614 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.