2 matches found
CVE-2019-20447
Jobberbase 2.0 has SQL injection via the PATHINFO to the jobs-in endpoint...
CVE-2019-20447
Jobberbase 2.0 is affected by SQL injection via PATH_INFO on the jobs-in endpoint. The root cause is lack of validation of externally supplied SQL statements in the database-based application, enabling an attacker to manipulate queries. CVSS metrics indicate high to critical impact (C/H I/H A/H) ...