CVE-2018-25187 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Tina4 Stack 1.0.3 contains multiple vulnerabilities allowing unauthenticated attackers to access sensitive database files and execute SQL injection attacks. Att…
High CVSS: 8.8

CVE-2018-25187

Tina4 Stack 1.0.3 contains multiple vulnerabilities allowing unauthenticated attackers to access sensitive database files and execute SQL injection attacks. Attackers can directly request the kim.db database file to retrieve user credentials and password hashes, or inject SQL code through the menu endpoint to manipulate database queries.
Vendor
Tina4
Product
Tina4 Stack
CWE
CWE-89
Yayın Tarihi
2026-03-06 13:16:01
Güncelleme
2026-03-16 19:12:09
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-89 Tina4 Stack HIGH Tina4 2026

Referanslar

https://www.exploit-db.com/exploits/45833 https://www.vulncheck.com/advisories/tina-stack-sql-injection-and-database-file-download