CVE-2019-25732 in EI-Tubeinformación

Resumen

por MITRE • 2026-06-04

PHP EI-Tube Script 3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the search parameter. Attackers can send GET requests to the search endpoint with crafted SQL payloads in the query parameter to extract sensitive database information including usernames, passwords, and version details.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulnCheck

Reservar

2026-06-04

Divulgación

2026-06-04

Moderación

aceptado

Artículo

VDB-368314

CPE

listo

CWE

CWE-89 (confirmado)

Explotación

Descargar

CVSS

8.2 (CNA)

EPSS

0.00000

KEV

Actividades

bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-25732
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-25732
CVE Details	https://www.cvedetails.com/cve/CVE-2019-25732/

◂ Anterior Visión De Conjunto Próximo ▸

Want to know what is going to be exploited?

We predict KEV entries!