CVE-2019-25300 | thejshen Globitek CMS 1.4 GET Parameter ID sql injection (Exploit 47581 / EDB-47581)

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability was found in thejshen Globitek CMS 1.4. It has been declared as critical. This affects an unknown part of the component GET Parameter Handler. The manipulation of the argument ID results in sql injection.

This vulnerability is reported as CVE-2019-25300. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2019-25300 | thejshen Globitek CMS 1.4 GET Parameter ID sql injection (Exploit 47581 / EDB-47581)

Post correlati

CVE-2024-36177 | Adobe Experience Manager up to 6.5.20 cross site scripting (apsb24-28)

CVE-2024-43744 | Adobe Experience Manager up to 6.5.21 Form Field cross site scripting (apsb24-69)

CVE-2025-7625 | YiJiuSmile kkFileViewOfficeEdit up to 5fbc57c48e8fe6c1b91e0e7995e2d59615f37abd /download url path traversal (Issue 12)

CVE-2024-39134 | zziplibv 0.13.77 /zzip/zip.c __zzip_fetch_disk_trailer stack-based overflow