https://feed.craftedsignal.io/tags/cve-2019-25636/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioTue, 24 Mar 2026 12:16:04 +0000https://feed.craftedsignal.io/briefs/2026-03-zeeways-sqli/Tue, 24 Mar 2026 12:16:04 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-zeeways-sqli/Zeeways Jobsite CMS is vulnerable to SQL injection, allowing unauthenticated attackers to inject SQL code through the 'id' GET parameter in crafted requests to news_details.php, jobs_details.php, or job_cmp_details.php to extract sensitive database information.Zeeways Jobsite CMS is vulnerable to SQL injection (CVE-2019-25636). This vulnerability allows unauthenticated attackers to inject arbitrary SQL code into database queries via the ‘id’ GET parameter. The vulnerability affects the news_details.php, jobs_details.php, and job_cmp_details.php files. By sending crafted HTTP requests with malicious ‘id’ parameter values, attackers can manipulate database queries using techniques like GROUP BY and CASE statements. The initial report was published…

]]>highadvisorysql-injectioncve-2019-25636web-application