CVE-2025-7714

Time Based SQLi in Global Medya's PHP CMS

CVSS 7.5 HIGHEPSS 0.3%CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Global Interactive Design Media Software Inc. Content Management System (CMS) allows Command Line Execution through SQL Injection. This issue affects Content Management System (CMS): through 21072025.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Produtos afetados

Global Interactive Design Media Software Inc. · Content Management System (CMS)

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0008 https://www.usom.gov.tr/bildirim/tr-26-0008