top of page
perceptive_background_267k.jpg

Jettweb PHP Hazir Haber Sitesi Scripti V3 contains an SQL injection vulnerability that allows attackers to inject malicious SQL commands through the kelime para…

Published:

11 March 2026 at 23:00:00

Alert date:

12 March 2026 at 22:25:09

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies, Database & Storage

CVE-2019-25512 is an SQL injection vulnerability in Jettweb PHP Hazir Haber Sitesi Scripti V3. The vulnerability exists in the kelime parameter of POST requests, allowing attackers to inject malicious SQL commands. Attackers can exploit this using UNION-based SQL injection techniques to extract sensitive database information or modify database contents. The vulnerability has a high criticality rating and affects web applications using this PHP news script.

Technical details

Mitigation steps:

Affected products:

Jettweb PHP Hazir Haber Sitesi Scripti

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2019-25512
https://www.exploit-db.com/exploits/46599
https://www.vulncheck.com/advisories/jettweb-php-hazir-haber-sitesi-scripti-v3-sql-injection-2

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page