Lucene search
+L

89 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:20 a.m.7 views

CVE-2019-17527

dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=comjsjobs=customfields.getfieldtitlebyfieldandfieldfo child parameter...

9.8CVSS8.3AI score0.01034EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:24 a.m.8 views

CVE-2018-20974

The js-jobs plugin before 1.0.7 for WordPress has CSRF...

8.8CVSS7.1AI score0.00649EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/17 8:16 a.m.8 views

CVE-2025-22208

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'filteremail' parameter in the GDPR Erase Data Request search feature...

4.7CVSS8.4AI score0.0063EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/17 8:16 a.m.8 views

CVE-2025-22209

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature...

4.7CVSS8.4AI score0.00286EPSS
Exploits1References1
NVD
NVD
added 2025/02/15 9:15 a.m.8 views

CVE-2025-22208

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'filteremail' parameter in the GDPR Erase Data Request search feature...

4.7CVSS0.0063EPSS
Exploits1References2
NVD
NVD
added 2025/02/15 9:15 a.m.7 views

CVE-2025-22209

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature...

4.7CVSS0.00286EPSS
Exploits1References2
OSV
OSV
added 2025/02/15 9:15 a.m.8 views

CVE-2025-22209

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature...

4.7CVSS6.1AI score0.00286EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/02/15 8:10 a.m.10 views

CVE-2025-22208 Extension - joomsky.com - SQL injection in JS jobs component version 1.1.5 - 1.4.3 for Joomla

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'filteremail' parameter in the GDPR Erase Data Request search feature...

5.8AI score0.0063EPSS
Exploits1References2
CVE
CVE
added 2025/02/15 8:10 a.m.61 views

CVE-2025-22208

CVE-2025-22208 affects the Joomla JS Jobs plugin (versions 1.1.5–1.4.3). The vulnerability is a SQL injection in the GDPR Erase Data Request search, exploitable by authenticated administrators via the filter_email parameter. Underlying cause is improper input handling in the SQL query used for th...

4.7CVSS8.7AI score0.0063EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/15 8:10 a.m.11 views

CVE-2025-22209 Extension - joomsky.com - SQL injection in JS jobs component version 1.1.5 - 1.4.3 for Joomla

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature...

5.8AI score0.00286EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/02/15 8:10 a.m.16 views

CVE-2025-22209 Extension - joomsky.com - SQL injection in JS jobs component version 1.1.5 - 1.4.3 for Joomla

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature...

0.00286EPSS
Exploits1References2
CVE
CVE
added 2025/02/15 8:10 a.m.72 views

CVE-2025-22209

CVE-2025-22209 (JS Jobs Joomla plugin) affects JS Jobs plugin versions 1.1.5–1.4.3 for Joomla. The underlying issue is a SQL injection in the Employer Payment History search feature, exploitable by an authenticated administrator via the searchpaymentstatus parameter. Affected component/file: the ...

4.7CVSS8.7AI score0.00286EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/02/15 12:0 a.m.5 views

PT-2025-6941 · Joomla · Js Jobs Plugin

Name of the Vulnerable Software and Affected Versions: JS Jobs plugin for Joomla versions 1.1.5 through 1.4.3 Description: A SQL injection issue allows authenticated attackers, with administrator privileges, to execute arbitrary SQL commands. This is achieved via the filter email parameter in the...

4.7CVSS8.6AI score0.0063EPSS
Exploits1References9
CNNVD
CNNVD
added 2025/02/15 12:0 a.m.5 views

Joomsky JS Jobs 安全漏洞

Joomsky JS Jobs is a Joomla Content Management System CMS based recruitment management plugin from Joomsky. A security vulnerability exists in Joomsky JS Jobs versions 1.1.5 through 1.4.3, which stems from an SQL injection vulnerability that allows an authenticated attacker to execute arbitrary S...

4.7CVSS8.2AI score0.00286EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/02/15 12:0 a.m.3 views

Joomsky JS Jobs 安全漏洞

Joomsky JS Jobs is a Joomla Content Management System CMS based recruitment management plugin from Joomsky. A security vulnerability exists in Joomsky JS Jobs versions 1.1.5 through 1.4.3, which stems from an SQL injection vulnerability that allows an authenticated attacker to execute arbitrary S...

4.7CVSS8.2AI score0.0063EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/08 4:39 a.m.11 views

CVE-2025-22206

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.2 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'fieldfor' parameter in the GDPR Field feature...

4.7CVSS8.3AI score0.0916EPSS
Exploits1References1
NVD
NVD
added 2025/02/04 3:15 p.m.13 views

CVE-2025-22206

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.2 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'fieldfor' parameter in the GDPR Field feature...

4.7CVSS0.0916EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/02/04 2:20 p.m.19 views

CVE-2025-22206 Extension - joomsky.com - SQL injection in JS jobs component version 1.1.5 - 1.4.2 for Joomla

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.2 for Joomla allows authenticated attackers administrator to execute arbitrary SQL commands via the 'fieldfor' parameter in the GDPR Field feature...

0.0916EPSS
Exploits1References2
CVE
CVE
added 2025/02/04 2:20 p.m.76 views

CVE-2025-22206

CVE-2025-22206 affects the Joomla JS Jobs plugin versions 1.1.5–1.4.2. The underlying issue is a SQL injection in the GDPR Field feature via the fieldfor parameter, allowing an authenticated administrator to execute arbitrary SQL commands. The vulnerability is confirmed across multiple sources in...

4.7CVSS8.5AI score0.0916EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/02/04 12:0 a.m.7 views

PT-2025-4390 · Joomla · Js Jobs Plugin

Name of the Vulnerable Software and Affected Versions: JS Jobs plugin versions 1.1.5 through 1.4.2 for Joomla Description: A SQL injection issue allows authenticated attackers, specifically administrators, to execute arbitrary SQL commands. This is achieved via the fieldfor parameter in the GDPR...

4.7CVSS7.6AI score0.0916EPSS
Exploits1References5
Rows per page
Query Builder