Js Jobs

js_jobs

Vendor: Joomsky • 6 CVEs

CVEs (6)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-22209 1Joomsky 1Js Jobs Jun 4, 2025 Feb 15, 2025 N/A· v4 4.7 MEDIUM· v3 N/A· v2 A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer...Show more A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature.Show less
CVE-2025-22208 1Joomsky 1Js Jobs Jun 4, 2025 Feb 15, 2025 N/A· v4 4.7 MEDIUM· v3 N/A· v2 A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'filter_email' parameter in the GDPR Erase Data...Show more A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'filter_email' parameter in the GDPR Erase Data Request search feature.Show less
CVE-2025-22206 1Joomsky 1Js Jobs Jun 4, 2025 Feb 4, 2025 N/A· v4 4.7 MEDIUM· v3 N/A· v2 A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.2 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'fieldfor' parameter in the GDPR Field feature.
CVE-2019-17527 1Joomsky 1Js Jobs Nov 21, 2024 Dec 19, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child par...Show more dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child parameter.Show less
CVE-2018-9183 1Joomsky 1Js Jobs Nov 21, 2024 Apr 2, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 The Joom Sky JS Jobs extension before 1.2.1 for Joomla! has XSS.
CVE-2018-5994 1Joomsky 1Js Jobs Nov 21, 2024 Feb 17, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 SQL Injection exists in the JS Jobs 1.1.9 component for Joomla! via the zipcode parameter in a newest-jobs request, or the ta parameter in a view_resume request.