CVE-2019-25543 - Vulnerability Analysis
HighCVSS: 8.2Last Updated: March 12, 2026
Netartmedia Real Estate Portal - SQL Injection
Published: March 12, 2026Updated: March 12, 2026Remote Exploitable
Overview
Netartmedia Real Estate Portal 5.0 contains an sql injection caused by unsanitized input in the page parameter in index.php, letting unauthenticated attackers bypass authentication, extract or modify database contents.
Severity & Score
Severity: High
CVSS Score: 8.2
Impact
Unauthenticated attackers can bypass authentication, extract sensitive data, or modify database contents.
Mitigation
Update to the latest version.
References
Related Resources
Details
- CVE ID
- CVE-2019-25543
- Severity
- High
- CVSS Score
- 8.2
- Type
- sql_injection
- Status
- unconfirmed
CWE
- CWE-89
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N