CVE-2019-6295

Cleanto 5.0 has SQL Injection via the assets/lib/service_method_ajax.php service_id parameter.