CVE-2018-25201 — School Management System CMS 1.0 contains an SQL injection vulnerability in the admin login functionality that allows attackers to bypass authentication by injecting SQL code through the username para — CVE Database · The Intelligence Room