HaPe PKH — Vulnerabilities & Security Advisories 6

All 6 CVE vulnerabilities found in HaPe PKH, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2018-25391	HaPe PKH 1.1 Missing Authorization Allows Unauthenticated Record Deletion CWE-862	7.5	High	2026-05-29
CVE-2018-25390	HaPe PKH 1.1 SQL Injection via desa Parameter CWE-89	8.2	High	2026-05-29
CVE-2018-25389	HaPe PKH 1.1 SQL Injection via nama_kelompok Parameter CWE-89	8.2	High	2026-05-29
CVE-2018-25388	HaPe PKH 1.1 Arbitrary File Upload via aksi_foto.php CWE-434	8.8	High	2026-05-29
CVE-2018-25387	HaPe PKH 1.1 Cross-Site Request Forgery via aksi_user.php CWE-352	5.3	Medium	2026-05-29
CVE-2018-25386	HaPe PKH 1.1 SQL Injection via id Parameter in admin/media.php CWE-89	8.2	High	2026-05-29

All 6 known CVE vulnerabilities affecting HaPe PKH with full Chinese analysis, references, and POCs where available.