CVE-2019-25457 – Web Ofisi Firma v13 contains an unauthenticated... (How to Fix)

Q: What is the severity of CVE-2019-25457?

CVE-2019-25457 has a CVSS score of 7.5 (HIGH). Web Ofisi Firma v13 contains an unauthenticated SQL injection vulnerability in the 'oz' parameter. Attackers can inject malicious SQL payloads via GET requests to extract sensitive database information. All organizations using this software version are affected.

📋 TL;DR

Web Ofisi Firma v13 contains an unauthenticated SQL injection vulnerability in the 'oz' parameter. Attackers can inject malicious SQL payloads via GET requests to extract sensitive database information. All organizations using this software version are affected.

💻 Affected Systems

Products:

Web Ofisi Firma

Versions: v13

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: The vulnerability exists in the default configuration and requires no special setup to be exploitable.

📦 What is this software?

Firma by Web Ofisi

View all CVEs affecting Firma →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including extraction of sensitive customer data, financial records, and administrative credentials leading to data breach and potential system takeover.

🟠

Likely Case

Data exfiltration of sensitive information from the database, potentially including user credentials, personal data, and business information.

🟢

If Mitigated

Limited information disclosure if database permissions are properly restricted and input validation is implemented.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: CONFIRMED

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploit code is publicly available and requires minimal technical skill to execute.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://www.web-ofisi.com/detay/kurumsal-firma-v13-sinirsiz-dil.html

Restart Required: No

Instructions:

1. Check vendor website for updated version. 2. If no patch available, implement workarounds. 3. Consider upgrading to a supported version if available.

🔧 Temporary Workarounds

Web Application Firewall (WAF)

all

Deploy a WAF with SQL injection protection rules to block malicious requests.

Input Validation Filter

all

Implement server-side input validation to sanitize the 'oz' parameter before processing.

🧯 If You Can't Patch

Implement network segmentation to restrict access to the vulnerable application
Deploy intrusion detection systems to monitor for SQL injection attempts

🔍 How to Verify

Check if Vulnerable:

Send a GET request with a time-based SQL injection payload in the 'oz[]' parameter and measure response time.

Check Version:

Check application version in admin panel or configuration files

Verify Fix Applied:

Test with the same payload after implementing fixes; successful fix should return normal response times and error messages.

📡 Detection & Monitoring

Log Indicators:

Unusual GET requests containing 'oz[]' parameter with SQL keywords
Multiple failed database queries from single IP

Network Indicators:

HTTP requests with SQL injection patterns in URL parameters
Unusual database query patterns from web server

SIEM Query:

source="web_logs" AND (url="*oz[]=*" AND (url="*SLEEP(*" OR url="*WAITFOR(*" OR url="*BENCHMARK(*"))

📊 Metadata

CVE ID: CVE-2019-25457

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-89

Published: February 22, 2026

Last Updated: March 2, 2026

🔗 References

https://www.exploit-db.com/exploits/47145 Exploit,VDB Entry
https://www.vulncheck.com/advisories/web-ofisi-firma-sql-injection-via-oz-parameter Broken Link
https://www.web-ofisi.com/detay/kurumsal-firma-v13-sinirsiz-dil.html Product

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2019-25457, you might also want to check these: