CVE-2019-25348 in CBAS-Webinfo

Summary

by MITRE • 02/12/2026

Computrols CBAS-Web 19.0.0 contains a boolean-based blind SQL injection vulnerability in the 'id' parameter that allows authenticated attackers to manipulate database queries. Attackers can exploit the vulnerability by crafting boolean-based SQL injection payloads in the 'id' parameter of the servers endpoint to extract or infer database information.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulnCheck

Reservation

02/12/2026

Disclosure

02/12/2026

Moderation

revoked

Entry

VDB-345819

CPE

ready

CWE

CWE-89 (confirmed)

Exploit

Download

CVSS

7.1 (CNA)

EPSS

0.00000

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-25348
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-25348
CVE Details	https://www.cvedetails.com/cve/CVE-2019-25348/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!