CVE-2019-25501 - Vulnerability Analysis
HighCVSS: 8.2Last Updated: March 4, 2026
Simple Job Script - SQL Injection
Published: March 4, 2026Updated: March 4, 2026Remote Exploitable
Overview
Simple Job Script contains an sql injection caused by improper sanitization of the app_id parameter in delete_application_ajax.php, letting attackers manipulate database queries to extract data or modify contents, exploit requires crafted POST requests.
Severity & Score
Severity: High
CVSS Score: 8.2
Impact
Attackers can extract sensitive data, bypass authentication, or modify database contents, potentially compromising the entire database.
Mitigation
Update to the latest version with proper input sanitization or apply patches that fix the SQL injection vulnerability.
References
Related Resources
Details
- CVE ID
- CVE-2019-25501
- Severity
- High
- CVSS Score
- 8.2
- Type
- sql_injection
- Status
- new
CWE
- CWE-89
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N