Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

22 matches found

EUVD
EUVDadded 2026/03/12 6:30 p.m.1 views

EUVD-2019-19800

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an authentication bypass vulnerability in the administration panel that allows unauthenticated attackers to gain administrative access by exploiting improper SQL query validation. Attackers can submit SQL injection payloads in the username and...

8.8CVSS5.8AI score0.00201EPSS
Exploits1References3
EUVD
EUVDadded 2026/03/12 6:30 p.m.0 views

EUVD-2019-19796

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the poll parameter. Attackers can send POST requests to arama.php with malicious SQL payloads in the poll parameter ...

8.8CVSS5.9AI score0.001EPSS
Exploits1References3
NVD
NVDadded 2026/03/12 4:16 p.m.1 views

CVE-2019-25518

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the poll parameter. Attackers can send POST requests to arama.php with malicious SQL payloads in the poll parameter ...

8.8CVSS0.001EPSS
Exploits1References2
NVD
NVDadded 2026/03/12 4:16 p.m.2 views

CVE-2019-25515

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an authentication bypass vulnerability in the login.php administration panel that allows unauthenticated attackers to gain administrative access by submitting crafted SQL syntax. Attackers can bypass authentication by submitting equals signs and...

9.8CVSS0.00991EPSS
Exploits1References2
NVD
NVDadded 2026/03/12 4:16 p.m.2 views

CVE-2019-25512

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows attackers to inject malicious SQL commands through the kelime parameter in POST requests. Attackers can manipulate the kelime parameter with UNION-based SQL injection payloads to extract sensitive databa...

8.8CVSS0.00041EPSS
Exploits1References2
NVD
NVDadded 2026/03/12 4:16 p.m.1 views

CVE-2019-25510

Jettweb PHP Hazir Haber Sitesi Scripti V2 contains an authentication bypass vulnerability in the administration panel that allows unauthenticated attackers to gain administrative access by exploiting improper SQL query validation. Attackers can submit SQL injection payloads in the username and...

9.8CVSS0.00201EPSS
Exploits1References2
Cvelist
Cvelistadded 2026/03/12 3:36 p.m.20 views

CVE-2019-25520 Jettweb PHP Hazir Haber Sitesi Scripti V1 Authentication Bypass

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an authentication bypass vulnerability in the administration panel that allows unauthenticated attackers to gain administrative access by exploiting improper SQL query validation. Attackers can submit SQL injection payloads in the username and...

8.8CVSS0.00201EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2026/03/12 3:36 p.m.2 views

CVE-2019-25520

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an authentication bypass vulnerability in the administration panel that allows unauthenticated attackers to gain administrative access by exploiting improper SQL query validation. Attackers can submit SQL injection payloads in the username and...

8.8CVSS5.8AI score0.00201EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/03/12 3:36 p.m.1 views

CVE-2019-25519

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows attackers to manipulate database queries by injecting malicious SQL code through the option parameter. Attackers can send POST requests to uyelik.php with crafted payloads in the option parameter to...

8.8CVSS6AI score0.00041EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2026/03/12 3:36 p.m.4 views

CVE-2019-25519

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability in the option parameter of uyelik.php, enabling time-based injections to extract sensitive data via crafted POST requests. Attacker access is described without authentication; CVSS notes high impact on confidentiali...

8.8CVSS6AI score0.00041EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/12 3:36 p.m.0 views

CVE-2019-25518 Jettweb PHP Hazir Haber Sitesi Scripti V1 SQL Injection via arama.php

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the poll parameter. Attackers can send POST requests to arama.php with malicious SQL payloads in the poll parameter ...

8.8CVSS5.9AI score0.001EPSS
Exploits1References2
Cvelist
Cvelistadded 2026/03/12 3:36 p.m.20 views

CVE-2019-25518 Jettweb PHP Hazir Haber Sitesi Scripti V1 SQL Injection via arama.php

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the poll parameter. Attackers can send POST requests to arama.php with malicious SQL payloads in the poll parameter ...

8.8CVSS0.001EPSS
Exploits1References2
Cvelist
Cvelistadded 2026/03/12 3:36 p.m.22 views

CVE-2019-25516 Jettweb PHP Hazir Haber Sitesi Scripti V1 SQL Injection via gallery.php

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the galleryid parameter. Attackers can send GET requests to gallery.php with malicious galleryid values using...

8.8CVSS0.001EPSS
Exploits1References2
CVE
CVEadded 2026/03/12 3:36 p.m.24 views

CVE-2019-25514

CVE-2019-25514 affects the Jettweb PHP Hazir Haber Sitesi Scripti V3. The vulnerability is an SQL injection in the POST parameter kelime that can be manipulated with UNION-based payloads to extract data or bypass authentication. Impact shown as high confidentiality risk and low integrity risk (CV...

9.8CVSS5.9AI score0.00128EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2026/03/12 3:36 p.m.20 views

CVE-2019-25514 Jettweb PHP Hazir Haber Sitesi Scripti V3 SQL Injection

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows attackers to inject malicious SQL commands through the kelime parameter in POST requests. Attackers can manipulate the kelime parameter with UNION-based SQL injection payloads to extract sensitive data...

8.8CVSS0.00128EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2026/03/12 3:36 p.m.1 views

CVE-2019-25510

Jettweb PHP Hazir Haber Sitesi Scripti V2 contains an authentication bypass vulnerability in the administration panel that allows unauthenticated attackers to gain administrative access by exploiting improper SQL query validation. Attackers can submit SQL injection payloads in the username and...

8.8CVSS5.8AI score0.00201EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2026/03/12 12:0 a.m.2 views

PT-2026-24973

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'q' parameter. Attackers can send GET requests to datagetir.php with malicious 'q' values using time-based blind...

8.8CVSS5.9AI score0.0041EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2026/03/12 12:0 a.m.3 views

PT-2026-24975

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an authentication bypass vulnerability in the login.php administration panel that allows unauthenticated attackers to gain administrative access by submitting crafted SQL syntax. Attackers can bypass authentication by submitting equals signs and...

8.7CVSS5.8AI score0.00991EPSS
Exploits1References3
seebug.org
seebug.orgadded 2007/02/16 12:0 a.m.13 views

Aktueldownload Haber scripti (id) Remote SQL Injection Vulnerability

No description provided by source. ----------------------------------------------------------------------- Aktueldownload Haber scripti id Remote SQL Injection Vulnerability ----------------------------------------------------------------------- Bulan: xoron xoron.info - xoron.biz...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2007/02/15 12:0 a.m.10 views

Aktueldownload Haber scripti - id SQL Injection

Aktueldownload Haber scripti - id SQL Injection ----------------------------------------------------------------------- Aktueldownload Haber scripti id Remote SQL Injection Vulnerability ----------------------------------------------------------------------- Bulan: xoron xoron.info - xoron.biz...

0.7AI score
Exploits0
Rows per page
Query Builder