CVE-2018-25412
CRITICAL · 9.8 EPSS 0.6%Coordinated alert spam, no PoC, no KEV, no defender triage signals present.
What: Delta Sql 1.8.2 arbitrary file upload vulnerability (docs_upload.php) allowing unauthenticated RCE via PHP shell upload. CVSS 9.8 CRITICAL.
Why it matters: Published just two weeks ago; not KEV-listed yet. Social chatter is identical copy-paste alerts with no PoC links, vendor advisories, or defender reports—all posts are automated/templated with no substantive engagement or exploitation evidence.
Where it's seen: Eight identical alarm posts on Bluesky, all truncated mid-sentence, zero technical discussion, no PoC repos, no vendor patching or mitigation guidance mentioned.
RISK: MODERATE — High CVSS but low adoption signal; no KEV listing or in-the-wild evidence yet.
Description
Delta Sql 1.8.2 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by sending POST requests to docs_upload.php with crafted multipart form data. Attackers can upload PHP files with arbitrary content to the upload directory and execute them on the server for remote code execution.
CVSS 3.1 breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H- Attack vector
- Network
- Complexity
- Low
- Privileges required
- None
- User interaction
- None
- Scope
- Unchanged
- Confidentiality
- High
- Integrity
- High
- Availability
- High
Affected versions
- deltasql_project/deltasql
- 1.8.2