high advisory March 24, 2026

Inout Article Base CMS SQL Injection Vulnerability (CVE-2019-25640)

Inout Article Base CMS is vulnerable to SQL injection, allowing unauthenticated attackers to manipulate database queries through the 'p' and 'u' parameters via XOR-based payloads in GET requests to portalLogin.php, potentially leading to sensitive information extraction or denial-of-service.

Inout Article Base CMS is susceptible to SQL injection vulnerabilities (CVE-2019-25640). Unauthenticated attackers can exploit these vulnerabilities by manipulating database queries via the ‘p’ and ‘u’ parameters in GET requests to the portalLogin.php script. The attack leverages XOR-based SQL injection payloads. Successful exploitation can allow attackers to extract sensitive database information or cause a denial of service through time-based attacks. This vulnerability poses a significant…

Detection coverage 2

Inout Article Base CMS portalLogin.php SQL Injection Attempt

high

Detects potential SQL injection attempts targeting portalLogin.php in Inout Article Base CMS by identifying XOR-based SQL injection patterns.

sigma tactics: initial_access techniques: T1190 sources: webserver, linux

Inout Article Base CMS portalLogin.php Access

low

Detects access to the portalLogin.php page which may indicate exploitation attempts

sigma tactics: initial_access techniques: T1190 sources: webserver, linux

Detection queries are kept inside the platform. Get full rules →

Indicators of compromise

url