CVE-2019-25511
SQL Injection in Jettweb PHP Script Allows Data Extraction
Publication date: 2026-03-12
Last updated on: 2026-03-17
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| jettweb | php_stock_news_site_script | 3 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-89 | The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
[{'type': 'paragraph', 'content': 'CVE-2019-25511 is a high-severity SQL injection vulnerability affecting Jettweb PHP Hazir Haber Sitesi Scripti version 3.0 and earlier. It allows unauthenticated attackers to manipulate database queries by injecting malicious SQL code through the "videoid" parameter in GET requests sent to the "fonksiyonlar.php" script.'}, {'type': 'paragraph', 'content': 'Attackers exploit a UNION-based SQL injection technique to extract sensitive information from the database. This means they can craft special input that alters the intended SQL query, enabling them to retrieve data they should not have access to.'}, {'type': 'paragraph', 'content': 'Additionally, multiple endpoints and parameters in the application are vulnerable to SQL injection, including POST and GET parameters in other scripts, and there is also an authentication bypass vulnerability in the admin login page.'}] [1, 2]
How can this vulnerability impact me? :
This vulnerability can have serious impacts including unauthorized access to sensitive database information. Attackers can extract confidential data by manipulating SQL queries.
Because the vulnerability requires no authentication and has a low attack complexity, it can be exploited remotely over the network without any user interaction or privileges.
The impact on confidentiality is high, meaning sensitive data can be disclosed. The integrity impact is low, so data modification is less likely, and availability is not affected.
Furthermore, the authentication bypass vulnerability allows attackers to gain unauthorized administrative access, potentially leading to further compromise.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
[{'type': 'paragraph', 'content': 'This SQL injection vulnerability can be detected by sending crafted GET requests to the vulnerable script and observing the responses for signs of SQL injection.'}, {'type': 'list_item', 'content': "Send a GET request to fonksiyonlar.php with a malicious videoid parameter using a UNION-based payload, for example: fonksiyonlar.php?fgit=videoyorumlar&videoid=1' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,CONCAT(CONCAT('qvzqq','LtSqAGUtJGxRGVrFfaFBRmvYYHCMdjkRYqQBbQfc'),'qqkjq'),NULL,NULL--"}, {'type': 'list_item', 'content': "Use time-based blind SQL injection payloads to detect the vulnerability, such as: datagetir.php?deger=undefined&dog=undefined&komut=ilcegetir&q=0'XOR(if(now()=sysdate(),sleep(0),0))XOR'Z&son=undefined"}, {'type': 'list_item', 'content': "Test the administration panel login page (yonetim/login.php) for authentication bypass by attempting SQL injection with username and password inputs like: ' = ' or '"}] [1]
What immediate steps should I take to mitigate this vulnerability?
I don't know