CVE-2019-25639 in Matri4Web Matrimony Website Scriptinformation

Résumé (Anglaise)

Matrimony Website Script M-Plus contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries by injecting SQL code through various POST parameters. Attackers can inject malicious SQL payloads into parameters like txtGender, religion, Fage, and cboCountry across simplesearch_results.php, advsearch_results.php, specialcase_results.php, locational_results.php, and registration2.php to extract sensitive database information or execute arbitrary SQL commands.

Responsable

VulnCheck

Réserver

24/03/2026

Divulgation

24/03/2026

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
352708	Matri4Web Matrimony Website Script POST Parameter simplesearch_results.php injection SQL	89	Preuve de concept	Non défini	CVE-2019-25639

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

◂ PrécédentAperçuSuivant ▸

Do you need the next level of professionalism?

Upgrade your account now!