High severity8.2NVD Advisory· Published May 25, 2026· Updated May 26, 2026
CVE-2018-25362
CVE-2018-25362
Description
Twitter-Clone 1 contains a SQL injection vulnerability in follow.php that allows attackers to manipulate database queries by injecting SQL code through the userid parameter. Attackers can submit union-based or time-based blind SQL injection payloads to extract sensitive database information including usernames, passwords, and database credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.