Threat Intel

v0.1

← CVEs

CVE-2019-25541

HIGH 8.2
Published
2026-03-12
Last Modified
2026-03-23
Affected Apps
27
Affected Devices
72
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Netartmedia PHP Mall 4.1 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries through unvalidated parameters. Attackers can inject time-based blind SQL payloads via the 'id' parameter in index.php or the 'Email' parameter in loginaction.php to extract sensitive database information.
Affected Applications in Environment 27
php v2:8.4+101~+ubuntu24.04.1+deb.sury.org+1
8 devices
php v2:8.4+100~+ubuntu24.04.1+deb.sury.org+1
1 device
php v5.4.16-48.el7
1 device
php v2:7.4+75
3 devices
php v2:8.4+101~+ubuntu22.04.1+deb.sury.org+1
1 device
php v2:8.2+93
1 device
php v1:7.0+35ubuntu6.1
1 device
php v2:8.4+96+ubuntu20.04.1+deb.sury.org+1
1 device
php v2:8.4+100~+ubuntu22.04.1+deb.sury.org+1
1 device
php v2:8.1+92ubuntu1
1 device
php v2:8.3+93ubuntu2
5 devices
php v1:7.2+60ubuntu1
1 device
tar v2:1.34-7.el9
26 devices
tar v2:1.30-11.el8_10
5 devices
tar v1.28-2.1ubuntu0.2
3 devices
tar v2:1.30-11.el8_10
2 devices
tar v2:1.34-9.el9_7
1 device
tar v2:1.34-9.el9_7
1 device
tar v1.29b-2ubuntu0.4
1 device
tar v2:1.26-35.el7
1 device
tar v2:1.34-9.el9_7
2 devices
tar v1.28-2.1ubuntu0.2+esm3
1 device
tar v2:1.35-9.el10_1
1 device
tar v2:1.30-9.el8
1 device
tar v2:1.30-9.el8
3 devices
tar v2:1.34-7.el9
1 device
tar v1.27.1-1ubuntu0.1
1 device
Affected Devices 72
aggietower Linux ah-ots Linux atc.db.usu.edu Linux cceredcapweb Linux chela03 Linux chela04 Linux chela05 Linux cleanaddressdev.banner.usu.edu Linux devjobsub.banner.usu.edu Linux dpapsb-161390.aggies.usu.edu Linux dpapsb-191594.mypc.usu.edu Linux el103-02.ece.usu.edu Linux el103-03.ece.usu.edu Linux el103-04.ece.usu.edu Linux el103-05.ece.usu.edu Linux el103-07.ece.usu.edu Linux el103-08.ece.usu.edu Linux el103-09.ece.usu.edu Linux el103-10.ece.usu.edu Linux el103-14.ece.usu.edu Linux el103-15.ece.usu.edu Linux el103-16.ece.usu.edu Linux el103-17.ece.usu.edu Linux el103-18.ece.usu.edu Linux el103-19.ece.usu.edu Linux el103-20.ece.usu.edu Linux el120-01.ece.usu.edu Linux el120-02.ece.usu.edu Linux el120-03.ece.usu.edu Linux el120-04.ece.usu.edu Linux el120-05.ece.usu.edu Linux el120-06.ece.usu.edu Linux el120-08.ece.usu.edu Linux el120-09.ece.usu.edu Linux el120-10.ece.usu.edu Linux el120-11.ece.usu.edu Linux el120-12.ece.usu.edu Linux el120-14.ece.usu.edu Linux eprocdev.banner.usu.edu Linux facreadyprod.pplant.usu.edu Linux facreadytestrhel.pplant.usu.edu Linux facshibsp2.pplant.usu.edu Linux guru.cluster Linux hotcheeto Linux kena-utility Linux my1 Linux my2 Linux mysql02 Linux oms.db.usu.edu Linux paymentworksdev.banner.usu.edu Linux privatebin Linux rcbd Linux rcdb-dev Linux redcapweb Linux sys-serv-l-301-data Linux thinkstation Linux web04a Linux web05 Linux web06 Linux web08.usu.edu Linux web11.usu.edu Linux web13.usu.edu Linux web14.usu.edu Linux web20 Linux web21 Linux web22 Linux web28 Linux web29.usu.edu Linux web30.usu.edu Linux web37.usu.edu Linux webs.usu.edu Linux zldtst.db.usu.edu Linux
References 2