Jettweb

Php Stock News Site Script

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2019-25520

Exploit
  • EPSS 0.15%
  • Veröffentlicht 12.03.2026 15:36:52
  • Zuletzt bearbeitet 17.03.2026 20:29:36

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an authentication bypass vulnerability in the administration panel that allows unauthenticated attackers to gain administrative access by exploiting improper SQL query validation. Attackers can submi...

8.2

CVE-2019-25519

Exploit
  • EPSS 0.03%
  • Veröffentlicht 12.03.2026 15:36:51
  • Zuletzt bearbeitet 17.03.2026 20:30:23

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows attackers to manipulate database queries by injecting malicious SQL code through the option parameter. Attackers can send POST requests to uyelik.php with c...

8.2

CVE-2019-25517

Exploit
  • EPSS 0.08%
  • Veröffentlicht 12.03.2026 15:36:50
  • Zuletzt bearbeitet 17.03.2026 20:41:12

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the cid parameter. Attackers can send requests to haberarsiv.php with...

8.2

CVE-2019-25518

Exploit
  • EPSS 0.08%
  • Veröffentlicht 12.03.2026 15:36:50
  • Zuletzt bearbeitet 17.03.2026 20:33:38

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the poll parameter. Attackers can send POST requests to arama.php wit...

7.5

CVE-2019-25516

Exploit
  • EPSS 0.08%
  • Veröffentlicht 12.03.2026 15:36:49
  • Zuletzt bearbeitet 17.03.2026 19:30:15

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the gallery_id parameter. Attackers can send GET requests to gallery....

9.8

CVE-2019-25515

Exploit
  • EPSS 0.64%
  • Veröffentlicht 12.03.2026 15:36:48
  • Zuletzt bearbeitet 17.03.2026 19:30:49

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an authentication bypass vulnerability in the login.php administration panel that allows unauthenticated attackers to gain administrative access by submitting crafted SQL syntax. Attackers can bypass...

9.8

CVE-2019-25514

Exploit
  • EPSS 0.1%
  • Veröffentlicht 12.03.2026 15:36:47
  • Zuletzt bearbeitet 17.03.2026 19:50:32

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows attackers to inject malicious SQL commands through the kelime parameter in POST requests. Attackers can manipulate the kelime parameter with UNION-based SQL...

9.8

CVE-2019-25513

Exploit
  • EPSS 0.31%
  • Veröffentlicht 12.03.2026 15:36:46
  • Zuletzt bearbeitet 17.03.2026 19:53:14

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'q' parameter. Attackers can send GET requests to datagetir.php w...

8.2

CVE-2019-25512

Exploit
  • EPSS 0.03%
  • Veröffentlicht 12.03.2026 15:36:45
  • Zuletzt bearbeitet 17.03.2026 19:55:37

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows attackers to inject malicious SQL commands through the kelime parameter in POST requests. Attackers can manipulate the kelime parameter with UNION-based SQL...

8.2

CVE-2019-25511

Exploit
  • EPSS 0.08%
  • Veröffentlicht 12.03.2026 15:36:44
  • Zuletzt bearbeitet 17.03.2026 19:58:06

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the videoid parameter. Attackers can send GET requests to fonksiyonla...