Web-Ofisi Emlak vulnerabilities
2 known vulnerabilities affecting web-ofisi/emlak.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2019-25459P2CRITICALCVSS 9.8v2.0.0vV22026-02-22
CVE-2019-25459 [CRITICAL] CWE-89 CVE-2019-25459: Web Ofisi Emlak V2 contains multiple SQL injection vulnerabilities in the endpoint that allow unauth
Web Ofisi Emlak V2 contains multiple SQL injection vulnerabilities in the endpoint that allow unauthenticated attackers to manipulate database queries through GET parameters. Attackers can inject SQL code into parameters like emlak_durumu, emlak_tipi, il, ilce, kelime, and semt to extract sensitive database information or perform time-based blind S
nvd
CVE-2019-25456P3CRITICALCVSS 9.1v2.0.0vv22026-02-22
CVE-2019-25456 [CRITICAL] CWE-89 CVE-2019-25456: Web Ofisi Emlak v2 contains an SQL injection vulnerability that allows unauthenticated attackers to
Web Ofisi Emlak v2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'ara' GET parameter. Attackers can send requests to with time-based SQL injection payloads to extract sensitive database information or cause denial of service.
nvd