Basic Job Site Script Security Vulnerabilities and Issues — Basic Job Site Script CVE List

Basic Job Site Script ProjectBasic Job Site Script

4 matches found

CVE•added 2017/12/24 6:0 p.m.•49 views

CVE-2017-17896

CVE-2017-17896 affects Readymade Job Site Script with a cross-site scripting (XSS) vulnerability via the keyword parameter to the /job URI. The NVD entry reports a base score of 4.3 (CVSS2) and 6.1 (CVSS3), indicating that network access is required and user interaction is involved in a changed s...

6.1CVSS5.9AI score0.0024EPSS

CVE•added 2017/12/24 6:0 p.m.•47 views

CVE-2017-17894

CVE-2017-17894 affects the Readymade Job Site Script, with a CSRF flaw exploitable via the /job URI. Public sources (NVD/NVD-derived records) assign a CVSS‑3 base score of 8.8 (HIGH) and CVSS‑2 of 6.8 (MEDIUM), indicating network access required with user interaction typically needed (UI: REQUIRE...

8.8CVSS8.7AI score0.00134EPSS

CVE•added 2017/12/24 6:0 p.m.•46 views

CVE-2017-17895

CVE-2017-17895 affects Readymade Job Site Script (PHP Scripts Mall). The vulnerability is a SQL Injection via the location_name array parameter to the /job URI, caused by unsanitized input in the application. Documented impact includes high confidentiality, integrity, and availability risks (CVSS...

9.8CVSS9.8AI score0.0025EPSS

CVE•added 2017/12/13 9:0 a.m.•40 views

CVE-2017-17642

CVE-2017-17642 affects Basic Job Site Script 2.0.5, with a SQL injection vulnerability in the keyword parameter to /job. The issue is described as enabling SQL command injection by a remote attacker, potentially impacting confidentiality, integrity, and availability. NVD metrics list CVSSv3 base ...

9.8CVSS9.8AI score0.02512EPSS