Lucene search

K
JoomskyJs Jobs

6 matches found

cve
cve
added 2019/12/19 9:15 p.m.79 views

CVE-2019-17527

dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child parameter.

9.8CVSS9.8AI score0.00307EPSS
cve
cve
added 2025/02/04 3:15 p.m.60 views

CVE-2025-22206

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.2 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'fieldfor' parameter in the GDPR Field feature.

4.7CVSS8.5AI score0.00121EPSS
cve
cve
added 2018/04/02 3:29 p.m.55 views

CVE-2018-9183

The Joom Sky JS Jobs extension before 1.2.1 for Joomla! has XSS.

5.4CVSS5.5AI score0.00271EPSS
cve
cve
added 2025/02/15 9:15 a.m.53 views

CVE-2025-22209

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature.

4.7CVSS8.7AI score0.0006EPSS
cve
cve
added 2025/02/15 9:15 a.m.47 views

CVE-2025-22208

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'filter_email' parameter in the GDPR Erase Data Request search feature.

4.7CVSS8.7AI score0.0006EPSS
cve
cve
added 2018/02/17 7:29 a.m.45 views

CVE-2018-5994

SQL Injection exists in the JS Jobs 1.1.9 component for Joomla! via the zipcode parameter in a newest-jobs request, or the ta parameter in a view_resume request.

9.8CVSS9.8AI score0.01411EPSS