Home / Vulnerability Intelligence / CVE-2019-25576

CVE-2019-25576 - Vulnerability Analysis

HighCVSS: 8.2

Last Updated: March 23, 2026

Kepler Wallpaper Script - SQL Injection

Published: March 21, 2026Updated: March 23, 2026Remote Exploitable

Overview

Kepler Wallpaper Script 1.1 contains an sql injection caused by unsanitized input in the category parameter, letting unauthenticated attackers execute arbitrary SQL queries and extract database information, exploit requires crafted GET requests.

Severity & Score

Severity: High

CVSS Score: 8.2

EPSS Score: 6.8%(Probability of exploitation in next 30 days)

Impact

Unauthenticated attackers can execute arbitrary SQL queries to extract sensitive database information.

Mitigation

Update to the latest version.

References

Social Media Activity(1 post)

Yazoul - Cybersecurity Alerts

@Matchbook3469

Mar 23, 2026

🟠 New security advisory: CVE-2019-25576 affects multiple systems. • Impact: Significant security breach potential • Risk: Unauthorized access or data exposure • Mitigation: Apply patches within 24-48 hours Full breakdown: https://www.yazoul.net/advisory/cve/cve-2019-25576-kepler-wallpaper-script-sql-injection #Cybersecurity #PatchNow #InfoSecCommunity

View original post

Related Resources

Details

CVE ID: CVE-2019-25576
Severity: High
CVSS Score: 8.2
Type: sql_injection
Status: unconfirmed
EPSS: 6.8%
Social Posts: 1

CWE

CWE-89

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

EPSS Score

6.8%Probability of exploitation in the next 30 days