CVE-2018-25187
Received Received - Intake
SQL Injection and Unauthorized Database Access in Tina

Publication date: 2026-03-06

Last updated on: 2026-03-16

Assigner: VulnCheck

Description
Tina4 Stack 1.0.3 contains multiple vulnerabilities allowing unauthenticated attackers to access sensitive database files and execute SQL injection attacks. Attackers can directly request the kim.db database file to retrieve user credentials and password hashes, or inject SQL code through the menu endpoint to manipulate database queries.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-06
Last Modified
2026-03-16
Generated
2026-06-16
AI Q&A
2026-03-06
EPSS Evaluated
2026-06-14
NVD
CVE-2018-25187
EUVD
EUVD-2018-21640
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
tina4 tina4_stack 1.0.3
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-89 The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

[{'type': 'paragraph', 'content': 'The Tina4 Stack version 1.0.3 contains multiple security flaws that allow attackers to access sensitive database files and perform SQL injection attacks without authentication.'}, {'type': 'paragraph', 'content': 'Attackers can directly download the SQLite database file named "kim.db" by sending HTTP GET requests, which exposes sensitive user information such as emails and hashed passwords.'}, {'type': 'paragraph', 'content': 'Additionally, the application executes SQL queries without proper input sanitization, enabling attackers to inject malicious SQL code through endpoints like "/kim/menu/get/1" to manipulate database queries.'}] [1]

Impact Analysis

This vulnerability can lead to unauthorized disclosure of sensitive user data, including user credentials and password hashes.

Attackers can exploit SQL injection to manipulate or extract data from the database, potentially compromising the integrity and confidentiality of the system.

Such unauthorized access and data manipulation can result in identity theft, unauthorized account access, and further exploitation of the affected system.

Compliance Impact

I don't know

Detection Guidance

[{'type': 'paragraph', 'content': 'This vulnerability can be detected by attempting to access the SQLite database file "kim.db" directly via HTTP GET requests to the web application, for example by requesting http://[target]/[PATH]/kim.db. If the file is accessible, it indicates the vulnerability is present.'}, {'type': 'paragraph', 'content': 'Additionally, testing for SQL injection can be done by sending crafted requests to the vulnerable endpoint "/kim/menu/get/1" with SQL injection payloads to see if the application executes unintended SQL commands.'}, {'type': 'list_item', 'content': 'Use curl or wget to try downloading the database file: curl http://[target]/[PATH]/kim.db'}, {'type': 'list_item', 'content': 'Send SQL injection test payloads to the menu endpoint, for example: curl "http://[target]/kim/menu/get/1\' OR \'1\'=\'1"'}] [1]

Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2018-25187. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart