Time Based SQLi in Global Medya’s PHP CMS_CVE-2025-7714

7.5 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Global Interactive Design Media Software Inc. Content Management System (CMS) allows Command Line Execution through SQL Injection.This issue affects Content Management System (CMS): through 21072025.

Basic Information

ID CVE-2025-7714

Source TR-CERT

Published Jan 29, 2026 at 14:44

Affected Product

Vendor Global Interactive Design Media Software Inc.

Product Content Management System (CMS)

Affected Versions Global Interactive Design Media Software Inc. Content Management System (CMS) 0

CWE Classification

CWE-89

References

www.usom.gov.tr /bildirim/tr-26-0008

{
    "lastseen": "",
    "description": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Global Interactive Design Media Software Inc. Content Management System (CMS) allows Command Line Execution through SQL Injection.This issue affects Content Management System (CMS): through 21072025.",
    "published": "2026-01-29T14:44:12.460Z",
    "modified": "2026-01-29T14:44:12.460Z",
    "type": "cve",
    "title": "Time Based SQLi in Global Medya's PHP CMS",
    "source": "TR-CERT",
    "references": "https://www.usom.gov.tr/bildirim/tr-26-0008",
    "id": "CVE-2025-7714",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "Global Interactive Design Media Software Inc. Content Management System (CMS) 0",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Content Management System (CMS)",
    "version": "0",
    "vendor": "Global Interactive Design Media Software Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}