Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 03 Jun 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Deltasql Project
Deltasql Project deltasql |
|
| CPEs | cpe:2.3:a:deltasql_project:deltasql:1.8.2:*:*:*:*:*:*:* | |
| Vendors & Products |
Deltasql Project
Deltasql Project deltasql |
Tue, 02 Jun 2026 02:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Sat, 30 May 2026 23:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Deltasql
Deltasql delta Sql |
|
| Vendors & Products |
Deltasql
Deltasql delta Sql |
Sat, 30 May 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Delta Sql 1.8.2 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by sending POST requests to docs_upload.php with crafted multipart form data. Attackers can upload PHP files with arbitrary content to the upload directory and execute them on the server for remote code execution. | |
| Title | Delta Sql 1.8.2 Arbitrary File Upload via docs_upload.php | |
| Weaknesses | CWE-306 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: VulnCheck
Published:
Updated: 2026-06-02T02:00:58.029Z
Reserved: 2026-05-30T12:32:05.035Z
Link: CVE-2018-25412
Updated: 2026-06-02T02:00:52.947Z
Status : Analyzed
Published: 2026-05-30T16:17:01.990
Modified: 2026-06-03T19:26:58.643
Link: CVE-2018-25412
No data.
OpenCVE Enrichment
Updated: 2026-05-30T21:17:45Z