Critical severity9.8NVD Advisory· Published Sep 3, 2018· Updated Jun 17, 2026
CVE-2018-16385
CVE-2018-16385
Description
ThinkPHP before 5.1.23 allows SQL Injection via the public/index/index/test/index query string.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
topthink/frameworkPackagist | < 5.1.23 | 5.1.23 |
Affected products
1Patches
Vulnerability mechanics
References
4- github.com/top-think/framework/issues/1375nvdExploitThird Party AdvisoryWEB
- exchange.xforce.ibmcloud.com/vulnerabilities/149288nvdThird Party AdvisoryWEB
- github.com/advisories/GHSA-vcm7-88jx-3r39ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2018-16385ghsaADVISORY
News mentions
0No linked articles in our index yet.