{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2019-25636/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["high"],"_cs_tags":["sql-injection","cve-2019-25636","web-application"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eZeeways Jobsite CMS is vulnerable to SQL injection (CVE-2019-25636). This vulnerability allows unauthenticated attackers to inject arbitrary SQL code into database queries via the \u0026lsquo;id\u0026rsquo; GET parameter. The vulnerability affects the news_details.php, jobs_details.php, and job_cmp_details.php files. By sending crafted HTTP requests with malicious \u0026lsquo;id\u0026rsquo; parameter values, attackers can manipulate database queries using techniques like GROUP BY and CASE statements. The initial report was published…\u003c/p\u003e\n","date_modified":"2026-03-24T12:16:04Z","date_published":"2026-03-24T12:16:04Z","id":"/briefs/2026-03-zeeways-sqli/","summary":"Zeeways Jobsite CMS is vulnerable to SQL injection, allowing unauthenticated attackers to inject SQL code through the 'id' GET parameter in crafted requests to news_details.php, jobs_details.php, or job_cmp_details.php to extract sensitive database information.","title":"Zeeways Jobsite CMS SQL Injection Vulnerability (CVE-2019-25636)","url":"https://feed.craftedsignal.io/briefs/2026-03-zeeways-sqli/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2019-25636","version":"https://jsonfeed.org/version/1.1"}