Joomsky: >> Js Jobs Security Vulnerabilities
A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'filter_email' parameter in the GDPR Erase Data Request search feature.
CVSS Score
4.7
EPSS Score
0.0
Published
2025-02-15
A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature.
CVSS Score
4.7
EPSS Score
0.0
Published
2025-02-15
A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.2 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'fieldfor' parameter in the GDPR Field feature.
CVSS Score
4.7
EPSS Score
0.001
Published
2025-02-04
dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child parameter.
CVSS Score
9.8
EPSS Score
0.003
Published
2019-12-19
The Joom Sky JS Jobs extension before 1.2.1 for Joomla! has XSS.
CVSS Score
5.4
EPSS Score
0.003
Published
2018-04-02
SQL Injection exists in the JS Jobs 1.1.9 component for Joomla! via the zipcode parameter in a newest-jobs request, or the ta parameter in a view_resume request.
CVSS Score
9.8
EPSS Score
0.015
Published
2018-02-17