CVE-2019-25640

Publication date

2026-03-24 11:27:12

Family

VulnCheck

State

PUBLISHED

Description

Inout Article Base CMS contains SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries through the p and u parameters. Attackers can inject SQL code using XOR-based payloads in GET requests to portalLogin.php to extract sensitive database information or cause denial of service through time-based attacks.