Vulnerability Details CVE-2019-17527
dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2019-17527
-
cpe:2.3:a:joomsky:js_jobs:1.0.6
-
cpe:2.3:a:joomsky:js_jobs:1.0.6.1
-
cpe:2.3:a:joomsky:js_jobs:1.0.6.2
-
cpe:2.3:a:joomsky:js_jobs:1.0.7
-
cpe:2.3:a:joomsky:js_jobs:1.0.7.1
-
cpe:2.3:a:joomsky:js_jobs:1.0.7.2
-
cpe:2.3:a:joomsky:js_jobs:1.0.7.3
-
cpe:2.3:a:joomsky:js_jobs:1.0.7.4
-
cpe:2.3:a:joomsky:js_jobs:1.0.7.6
-
cpe:2.3:a:joomsky:js_jobs:1.0.7.7
-
cpe:2.3:a:joomsky:js_jobs:1.0.7.8
-
cpe:2.3:a:joomsky:js_jobs:1.0.8
-
cpe:2.3:a:joomsky:js_jobs:1.0.8.5
-
cpe:2.3:a:joomsky:js_jobs:1.0.8.7
-
cpe:2.3:a:joomsky:js_jobs:1.0.9
-
cpe:2.3:a:joomsky:js_jobs:1.0.9.1
-
cpe:2.3:a:joomsky:js_jobs:1.1.0.0
-
cpe:2.3:a:joomsky:js_jobs:1.1.1
-
cpe:2.3:a:joomsky:js_jobs:1.1.2
-
cpe:2.3:a:joomsky:js_jobs:1.1.3
-
cpe:2.3:a:joomsky:js_jobs:1.1.4
-
cpe:2.3:a:joomsky:js_jobs:1.1.5
-
cpe:2.3:a:joomsky:js_jobs:1.1.6
-
cpe:2.3:a:joomsky:js_jobs:1.1.7
-
cpe:2.3:a:joomsky:js_jobs:1.1.8
-
cpe:2.3:a:joomsky:js_jobs:1.1.9
-
cpe:2.3:a:joomsky:js_jobs:1.2.0
-
cpe:2.3:a:joomsky:js_jobs:1.2.1
-
cpe:2.3:a:joomsky:js_jobs:1.2.2
-
cpe:2.3:a:joomsky:js_jobs:1.2.3
-
cpe:2.3:a:joomsky:js_jobs:1.2.4
-
cpe:2.3:a:joomsky:js_jobs:1.2.5
-
cpe:2.3:a:joomsky:js_jobs:1.2.6