CVE-2018-25204
The CVE-2018-25204 entry describes an SQL injection in Library CMS 1.0 where unauthenticated attackers can bypass authentication by injecting SQL into the username field of the admin login. The vulnerability stems from improper handling of the username input, allowing boolean-based blind SQL payl...