Description
The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the p1 parameter. Attackers can send GET requests to city_graph.php with crafted SQL payloads to extract sensitive database information including schema names and other data.
Published: 2026-05-29
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a classic SQL injection flaw in city_graph.php that allows attackers to embed malicious SQL commands via the p1 parameter. Because authentication is not checked, any user can send a crafted GET request to execute arbitrary SQL statements. The resulting impact is the exposure of sensitive database content, including table and schema names, and potentially other confidential data stored in the application database.

Affected Systems

The Open ISES Project, version 3.30A, is the affected product. This release is a PHP web application that hosts the city_graph.php script. No other versions or products are listed as impacted.

Risk and Exploitability

The CVSS score of 8.8 indicates high severity. EPSS data is unavailable, and the vulnerability is not listed in CISA KEV. According to the description, the attack vector is inferred to be a simple unauthenticated HTTP GET request to city_graph.php. Because the flaw allows arbitrary SQL execution without any preliminary authentication or privileged context, the likelihood of exploitation is high among exposed web servers hosting the affected application. The risk is further amplified by the lack of a publicly available patch or workaround in the provided data.

Generated by OpenCVE AI on May 29, 2026 at 17:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Open ISES Project to the latest release that contains a fix for the city_graph.php SQL injection flaw.
  • Modify the application to use parameterized queries or to whitelist allowed values for the p1 parameter, eliminating direct interpolation of user input into SQL statements.
  • Deploy a web application firewall rule that blocks common SQL injection patterns on requests to city_graph.php to provide a temporary protective barrier.

Generated by OpenCVE AI on May 29, 2026 at 17:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 29 May 2026 16:15:00 +0000

Type Values Removed Values Added
Description The Open ISES Project 3.30A contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the p1 parameter. Attackers can send GET requests to city_graph.php with crafted SQL payloads to extract sensitive database information including schema names and other data.
Title The Open ISES Project 3.30A SQL Injection via city_graph.php
Weaknesses CWE-89
References
Metrics cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N'}

cvssV4_0

{'score': 8.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-05-29T17:19:22.686Z

Reserved: 2026-05-29T13:00:06.445Z

Link: CVE-2018-25403

cve-icon Vulnrichment

Updated: 2026-05-29T17:19:15.285Z

cve-icon NVD

Status : Deferred

Published: 2026-05-29T16:16:20.010

Modified: 2026-05-29T16:32:14.400

Link: CVE-2018-25403

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T17:30:04Z

Weaknesses