CVE-2019-25542
EUVD-2019-1983312.03.2026, 16:16
Netartmedia Real Estate Portal 5.0 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the user_email parameter. Attackers can send POST requests to index.php with malicious payloads in the user_email field to bypass authentication, extract sensitive data, or modify database contents.
Awaiting analysis
This vulnerability is currently awaiting analysis.