Unrated severityNVD Advisory· Published Feb 22, 2026· Updated Apr 7, 2026
Web Ofisi Emlak V2 SQL Injection via emlak-ara.html
CVE-2019-25459
Description
Web Ofisi Emlak V2 contains multiple SQL injection vulnerabilities in the endpoint that allow unauthenticated attackers to manipulate database queries through GET parameters. Attackers can inject SQL code into parameters like emlak_durumu, emlak_tipi, il, ilce, kelime, and semt to extract sensitive database information or perform time-based blind SQL injection attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/47142mitreexploit
- www.vulncheck.com/advisories/web-ofisi-emlak-sql-injection-via-emlak-arahtmlmitrethird-party-advisory
- www.web-ofisi.com/detay/emlak-scripti-v3.htmlmitreproduct
News mentions
0No linked articles in our index yet.