Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-17527 | 1 Joomsky | 1 Js Jobs | 2020-01-02 | 7.5 HIGH | 9.8 CRITICAL |
dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child parameter. | |||||
CVE-2018-9183 | 1 Joomsky | 1 Js Jobs | 2018-05-02 | 3.5 LOW | 5.4 MEDIUM |
The Joom Sky JS Jobs extension before 1.2.1 for Joomla! has XSS. | |||||
CVE-2018-5994 | 1 Joomsky | 1 Js Jobs | 2018-03-05 | 7.5 HIGH | 9.8 CRITICAL |
SQL Injection exists in the JS Jobs 1.1.9 component for Joomla! via the zipcode parameter in a newest-jobs request, or the ta parameter in a view_resume request. |