CVE-2018-25183

Received Received - Intake

SQL Injection in Shipping System CMS 1.0 Enables Authentication Bypass

Publication date: 2026-03-26

Last updated on: 2026-03-27

Assigner: VulnCheck

Description

Shipping System CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication by injecting SQL code through the username parameter. Attackers can submit malicious SQL payloads using boolean-based blind techniques in POST requests to the admin login endpoint to authenticate without valid credentials.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-03-26

Last Modified

2026-03-27

Generated

2026-06-16

AI Q&A

2026-03-26

EPSS Evaluated

2026-06-15

NVD

CVE-2018-25183

EUVD

EUVD-2018-21655

Affected Vendors & Products

Vendor	Product	Version / Range
wecodex	shipping_system_cms	1.0

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-89	The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

CWE ID

Description

CWE-89

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Attack-Flow Graph

Executive Summary

CVE-2018-25183 is a high-severity SQL injection vulnerability in Shipping System CMS version 1.0. It allows unauthenticated attackers to bypass authentication by injecting malicious SQL code into the username parameter of the admin login POST request.

Attackers exploit this vulnerability using boolean-based blind SQL injection techniques to manipulate the SQL query logic, enabling them to authenticate without valid credentials.

Compliance Impact

The vulnerability allows unauthenticated attackers to bypass authentication and potentially access or modify sensitive data within the Shipping System CMS. Such unauthorized access to sensitive data can lead to violations of data protection regulations like GDPR and HIPAA, which require strict controls over access to personal and protected health information.

By enabling attackers to authenticate without valid credentials and manipulate database queries, this SQL injection flaw undermines the confidentiality and integrity of data, thereby impacting compliance with standards that mandate secure authentication and data protection measures.

Impact Analysis

This vulnerability can allow attackers to bypass authentication and gain unauthorized access to the admin panel of the Shipping System CMS.

Once authenticated without valid credentials, attackers may access or modify sensitive data, potentially compromising the integrity and confidentiality of the system.

Exploitation of this flaw could lead to further database compromises or unauthorized actions within the application.

Detection Guidance

This vulnerability can be detected by testing the admin login POST request for SQL injection in the username parameter using boolean-based blind SQL injection techniques.

A practical approach is to send crafted POST requests to the login processing script endpoint (/demos/sendpack/admin/index.php?action=processlogin) with payloads that manipulate the SQL query logic, such as using MySQL RLIKE conditions.

For example, using curl or a similar tool, you can send requests with payloads in the username field to observe differences in response behavior indicating SQL injection vulnerability.

curl -X POST -d "username=' OR 1=1-- &password=anything" http://target/demos/sendpack/admin/index.php?action=processlogin
curl -X POST -d "username=' RLIKE (SELECT IF(1=1, 'a', 'b'))-- &password=anything" http://target/demos/sendpack/admin/index.php?action=processlogin

Monitoring network traffic for suspicious POST requests to the admin login endpoint with unusual or encoded SQL payloads can also help detect exploitation attempts.

Mitigation Strategies

Immediate mitigation steps include restricting access to the admin login endpoint to trusted IP addresses or networks to reduce exposure.

Implement input validation and sanitization on the username parameter to prevent SQL injection attacks.

Use prepared statements or parameterized queries in the backend code to safely handle user inputs.

If possible, apply any available patches or updates from the vendor that address this vulnerability.

Monitor logs for suspicious login attempts and consider temporarily disabling the vulnerable login functionality if feasible.

Hi! I’m here to help you understand CVE-2018-25183. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2018-25183

SQL Injection in Shipping System CMS 1.0 Enables Authentication Bypass

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart