Security Advisory

CVE-2019-25575

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-21 15:30:33

Last updated 2026-03-23 20:03:27

Assigner VulnCheck

State PUBLISHED

Description

SimplePress CMS 1.0.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the p and s parameters. Attackers can send GET requests with crafted SQL payloads to extract sensitive database information including usernames, database names, and version details.

← Browse all CVEs View on cve.org ↗