A vulnerability was found in Ourenergy Collectric CMU 1.0 . It has been classified as critical . This impacts the function Login . Performing a manipulation of the argument lang results in sql injection. This vulnerability is reported as CVE-2018-25379 . The attack is possible to be carried out remotely. Moreover, an exploit is present.