CVE-2019-25636 in Jobsite CMSinfo

Summary

Zeeways Jobsite CMS contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' GET parameter. Attackers can send crafted requests to news_details.php, jobs_details.php, or job_cmp_details.php with malicious 'id' values using GROUP BY and CASE statements to extract sensitive database information.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsible

VulnCheck

Reservation

03/24/2026

Disclosure

03/24/2026

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
352713	Zeeways Jobsite CMS news_details.php sql injection	89	Proof-of-Concept	Not defined	CVE-2019-25636

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸