What is CVE-2018-25201?

CVE-2018-25201 is a high-severity vulnerability in Wecodex Solutions School Management System Cms, classified under SQL Injection. CVSS score: 7.1/10. Published 2026-03-26.

How severe is CVE-2018-25201?

High severity. CVSS v3 base score is 7.1 out of 10.

SQL Injection in Wecodex Solutions School Management System Cms

CVE-2018-25201

School Management System CMS 1.0 contains an SQL injection vulnerability in the admin login functionality that allows attackers to bypass authentication by injecting SQL code through the username parameter. Attackers can submit malicious p…

Vulnerability class: SQL Injection

EPSS: 0.001 (17.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.1 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N.

Affected products

Wecodex Solutions School Management System Cms — versions 1.0

Weakness classification (CWE)

CWE-89 — SQL Injection

References

ExploitDB-44727 (exploit)
Official Product Homepage (product)
VulnCheck Advisory: School Management System CMS 1.0 Admin Login SQL Injection (third-party-advisory)

Frequently asked questions

What is CVE-2018-25201?: CVE-2018-25201 is a high-severity vulnerability in Wecodex Solutions School Management System Cms, classified under SQL Injection. CVSS score: 7.1/10. Published 2026-03-26.
How severe is CVE-2018-25201?: High severity. CVSS v3 base score is 7.1 out of 10.