CVE-2018-25339

Name of the Vulnerable Software and Affected Versions Zechat version 1.5

Description An issue exists where unauthenticated attackers can extract database information using time-based blind techniques. This is achieved by exploiting the v parameter with sleep-based blind injection, which allows the attacker to confirm the flaw and retrieve data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.