Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

134 matches found

CVE
CVEadded 2026/03/12 3:36 p.m.7 views

CVE-2019-25513

CVE-2019-25513 affects Jettweb PHP Hazir Haber Sitesi Scripti V3, with an SQL injection in datagetir.php via the GET parameter q. The vulnerability allows unauthenticated attackers to manipulate queries using time-based blind techniques to extract data or bypass authentication. CVSS metrics indic...

9.8CVSS5.9AI score0.0041EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/12 3:36 p.m.0 views

CVE-2019-25512 Jettweb PHP Hazir Haber Sitesi Scripti V3 SQL Injection

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows attackers to inject malicious SQL commands through the kelime parameter in POST requests. Attackers can manipulate the kelime parameter with UNION-based SQL injection payloads to extract sensitive databa...

8.8CVSS5.9AI score0.00041EPSS
Exploits1References2
CVE
CVEadded 2026/03/12 3:36 p.m.4 views

CVE-2019-25512

CVE-2019-25512 affects Jettweb PHP Hazir Haber Sitesi Scripti V3. The vulnerability is an SQL injection exploitable through the kelime parameter in POST requests, allowing UNION-based payloads to extract or modify database contents. The reports indicate a NETWORK attack vector with LOW complexity...

8.8CVSS5.9AI score0.00041EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/03/12 3:36 p.m.0 views

CVE-2019-25511 Jettweb PHP Hazir Haber Sitesi Scripti V3 SQL Injection

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the videoid parameter. Attackers can send GET requests to fonksiyonlar.php with malicious videoid values using...

8.8CVSS5.9AI score0.001EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2026/03/12 3:36 p.m.1 views

CVE-2019-25510

Jettweb PHP Hazir Haber Sitesi Scripti V2 contains an authentication bypass vulnerability in the administration panel that allows unauthenticated attackers to gain administrative access by exploiting improper SQL query validation. Attackers can submit SQL injection payloads in the username and...

8.8CVSS5.8AI score0.00201EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2026/03/12 3:36 p.m.4 views

CVE-2019-25510

CVE-2019-25510 affects Jettweb PHP Hazir Haber Sitesi Scripti V2. The vulnerability is an authentication bypass in the administration panel caused by improper SQL query validation in the admingiris.php login form, enabling unauthenticated attackers to bypass login and access the administrative in...

9.8CVSS5.8AI score0.00201EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2026/03/12 3:36 p.m.23 views

CVE-2019-25508

CVE-2019-25508 describes an SQL injection in the Jettweb Php Hazir Ilan Sitesi Scripti V2. The vulnerability arises from unsafely handling the GET parameter “kat” in the /katgetir.php endpoint, allowing unauthenticated attackers to manipulate queries and potentially exfiltrate database informatio...

8.8CVSS5.9AI score0.001EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2026/03/12 12:0 a.m.1 views

PT-2026-24977

Jettweb PHP Hazir Haber Sitesi Scripti V1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the cid parameter. Attackers can send requests to haberarsiv.php with malicious cid values using UNION-based injecti...

8.8CVSS5.9AI score0.001EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2026/03/12 12:0 a.m.2 views

PT-2026-24975

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an authentication bypass vulnerability in the login.php administration panel that allows unauthenticated attackers to gain administrative access by submitting crafted SQL syntax. Attackers can bypass authentication by submitting equals signs and...

8.7CVSS5.8AI score0.00991EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2026/03/12 12:0 a.m.2 views

PT-2026-24973

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'q' parameter. Attackers can send GET requests to datagetir.php with malicious 'q' values using time-based blind...

8.8CVSS5.9AI score0.0041EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2007-4060

Malware in sbrugna...

7.5CVSS6.4AI score0.00622EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2007-4059

Malware in sbrugna...

4.3CVSS6.4AI score0.00815EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2008-4159

Malware in sbrugna...

7.5CVSS6.4AI score0.00414EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2007-6637

Malware in sbrugna...

4.3CVSS6.4AI score0.01823EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-1416

Malware in sbrugna...

7.5CVSS6.4AI score0.01018EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-0685

Malware in sbrugna...

7.5CVSS6.2AI score0.0173EPSS
Exploits0References8
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2007-5162

Malware in sbrugna...

7.5CVSS6.4AI score0.00997EPSS
Exploits1References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2007-5163

Malware in sbrugna...

4.3CVSS6.4AI score0.00507EPSS
Exploits0References7
Packet Storm
Packet Stormadded 2023/08/22 12:0 a.m.376 views

FastMatch Iddaa Tahmin Scripti 2.0 SQL Injection

==================================================================================================================================== | Title : FastMatch İddaa Tahmin Scripti v2.0 auth by pass vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefo...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2019/07/19 12:0 a.m.106 views

Web Ofisi Emlak 2 SQL Injection

Exploit Title: Web Ofisi Emlak 2 - 'ara' SQL Injection Date: 2019-07-19 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/emlak-scripti-v2.html Demo Site: http://demobul.net/emlakv2/ Version: v2 Tested on: Kali Linux CVE: N/A ----- PoC: SQLi ----- Request:...

0.1AI score
Exploits0
Rows per page
Query Builder