Lucene search
K

15 matches found

HackRead
HackRead
added 2026/03/11 12:14 p.m.10 views

BlackSanta Malware Targets HR Staff with Fake CV Downloads

Aryaka researchers have identified a new threat from a Russian-speaking group using 'BlackSanta' malware. By disguising attacks as job applications, hackers are bypassing security to target recruitment workflows...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/05 7:30 p.m.4 views

CVE-2019-25499

Simple Job Script contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the jobid parameter. Attackers can send POST requests to getjobapplicationsajax.php with malicious jobid values to bypass authentication,...

9.8CVSS6.1AI score0.00453EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/04 6:31 p.m.6 views

EUVD-2019-19725

Simple Job Script contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the jobid parameter. Attackers can send POST requests to getjobapplicationsajax.php with malicious jobid values to bypass authentication,...

8.8CVSS6.1AI score0.00453EPSS
Exploits1References3
OSV
OSV
added 2026/03/04 6:16 p.m.3 views

CVE-2019-25499

Simple Job Script contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the jobid parameter. Attackers can send POST requests to getjobapplicationsajax.php with malicious jobid values to bypass authentication,...

9.8CVSS5.9AI score
Exploits0References2
NVD
NVD
added 2026/03/04 6:16 p.m.8 views

CVE-2019-25499

Simple Job Script contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the jobid parameter. Attackers can send POST requests to getjobapplicationsajax.php with malicious jobid values to bypass authentication,...

9.8CVSS0.00453EPSS
Exploits1References2
CVE
CVE
added 2026/03/04 5:15 p.m.9 views

CVE-2019-25499

CVE-2019-25499 describes an SQL injection in Simple Job Script via the job_id parameter passed to get_job_applications_ajax.php. Unauthenticated attackers can manipulate queries, potentially bypass authentication and extract or modify data. Red Hat and other sources corroborate the issue, with ex...

9.8CVSS6.1AI score0.00453EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/04 5:15 p.m.4 views

CVE-2019-25499

Simple Job Script contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the jobid parameter. Attackers can send POST requests to getjobapplicationsajax.php with malicious jobid values to bypass authentication,...

8.8CVSS6.1AI score0.00453EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/03/04 5:15 p.m.31 views

CVE-2019-25499 Simple Job Script SQL Injection via get_job_applications_ajax.php

Simple Job Script contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the jobid parameter. Attackers can send POST requests to getjobapplicationsajax.php with malicious jobid values to bypass authentication,...

8.8CVSS0.00453EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-29493

Malware in sbrugna...

9.8CVSS9.2AI score0.01758EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-48289

Malicious code in bioql PyPI...

7.2CVSS6.5AI score0.0062EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:42 p.m.7 views

CVE-2020-8645

An issue was discovered in Simplejobscript.com SJS through 1.66. There is an unauthenticated SQL injection via the job applications search function. The vulnerable parameter is jobid. The function is getJobApplicationsByJobId. The file is lib/class.JobApplication.php...

9.8CVSS8.2AI score0.01758EPSS
Exploits1References1
NVD
NVD
added 2020/02/07 12:15 a.m.27 views

CVE-2020-8645

An issue was discovered in Simplejobscript.com SJS through 1.66. There is an unauthenticated SQL injection via the job applications search function. The vulnerable parameter is jobid. The function is getJobApplicationsByJobId. The file is lib/class.JobApplication.php...

9.8CVSS10AI score0.01758EPSS
Exploits1References1
Prion
Prion
added 2020/02/07 12:15 a.m.10 views

Sql injection

An issue was discovered in Simplejobscript.com SJS through 1.66. There is an unauthenticated SQL injection via the job applications search function. The vulnerable parameter is jobid. The function is getJobApplicationsByJobId. The file is lib/class.JobApplication.php...

7.5CVSS9.9AI score0.01758EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/02/06 11:50 p.m.24 views

CVE-2020-8645

An issue was discovered in Simplejobscript.com SJS through 1.66. There is an unauthenticated SQL injection via the job applications search function. The vulnerable parameter is jobid. The function is getJobApplicationsByJobId. The file is lib/class.JobApplication.php...

10AI score0.01758EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2011/01/21 7:40 a.m.7 views

Hackers Steal $ 150,000 Malware Job Search !

Small businesses are worried about a new scam: criminals in search of work who want to break into online bank accounts. The U.S. Federal Bureau of Investigation issued a warning Wednesday on a new version of a fraud technique called long-term computer automated information exchange fraud. With AC...

6.6AI score
Exploits0
Rows per page
Query Builder