CVE-2018-25407

## Vulnerability eNdonesia Portal version 8.7 contains multiple SQL injection vulnerabilities in the mod.php script. The artid, cid, did, contid, and aboutid parameters are not properly sanitized before being used in SQL queries. This affects the publisher, diskusi, galeri, content, and about modules. The application does not require authentication to reach these parameter injection points [1], [2].

Exploitation

An unauthenticated attacker can send crafted HTTP requests to mod.php with malicious SQL payloads in the vulnerable parameters. No authentication, user interaction, or special network position is required beyond standard web access. The attacker simply appends SQL injection syntax (e.g., a single quote or boolean conditions) to any of the listed parameters to manipulate the underlying query [2].

Impact

Successful exploitation allows the attacker to execute arbitrary SQL commands against the backend database. This can lead to extraction of sensitive information, including usernames, database names, and database version details. The compromise is limited to reading database contents; however, depending on database permissions, further escalation (e.g., writing files) may be possible [2].

Mitigation

As of the publication date (2026-05-30), no official patch has been announced for eNdonesia Portal 8.7. The software appears to reach end-of-life or is no longer actively maintained. Administrators should consider migrating to an alternative portal solution or implement a web application firewall (WAF) to block malicious SQL patterns if system migration is not immediately possible [1], [2].