An issue was discovered in Simplejobscript.com SJS before 1.65. There is unauthenticated SQL injection via the search engine. The parameter is landing_location. The function is countSearchedJobs(). The file is _lib/class.Job.php.
CPE | Name | Operator | Version |
---|---|---|---|
simplejobscript | lt | 1.65 |