top of page
perceptive_background_267k.jpg

Netartmedia PHP Mall 4.1 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting SQL co…

Published:

11 maart 2026 om 23:00:00

Alert date:

12 maart 2026 om 17:15:30

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies, Database & Storage

CVE-2019-25540 affects Netartmedia PHP Mall version 4.1, containing multiple SQL injection vulnerabilities. The flaws allow unauthenticated attackers to manipulate database queries by injecting malicious SQL code through various parameters. Successful exploitation enables attackers to extract sensitive information from the database, including user credentials and system data. The vulnerability poses a high risk due to the lack of authentication requirements for exploitation. Multiple proof-of-concept exploits are publicly available, increasing the likelihood of active exploitation.

Technical details

Mitigation steps:

Affected products:

Netartmedia PHP Mall

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2019-25540
https://www.exploit-db.com/exploits/46562
https://www.vulncheck.com/advisories/netartmedia-php-mall-multiple-sql-injection

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page