Joomsky

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-25444 1Joomsky 1Js Help Desk Jan 23, 2026 May 17, 2024 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Unrestricted Upload of File with Dangerous Type vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support Plugin allows Using Malicious Files.This issue affects JS Help Desk – Best Help Desk & Support Plugin:...Show more Unrestricted Upload of File with Dangerous Type vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support Plugin allows Using Malicious Files.This issue affects JS Help Desk – Best Help Desk & Support Plugin: from n/a through 2.7.7.Show less
CVE-2022-47151 1Joomsky 1Js Help Desk Apr 28, 2026 Apr 17, 2024 N/A· v4 8.6 HIGH· v3 N/A· v2 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support Plugin.This issue affects JS Help Desk – Best Help Desk & Support...Show more Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support Plugin.This issue affects JS Help Desk – Best Help Desk & Support Plugin: from n/a through 2.7.1.Show less
CVE-2023-31087 1Joomsky 1Js Job Manager Apr 28, 2026 Nov 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Cross-Site Request Forgery (CSRF) vulnerability in JoomSky JS Job Manager plugin <= 2.0.0 versions.
CVE-2023-25963 1Joomsky 1Js Job Manager Nov 21, 2024 Jun 16, 2023 N/A· v4 4.8 MEDIUM· v3 N/A· v2 Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in JoomSky JS Job Manager plugin <= 2.0.0 versions.
CVE-2019-17527 1Joomsky 1Js Jobs Nov 21, 2024 Dec 19, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child par...Show more dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child parameter.Show less
CVE-2018-21002 1Joomsky 1Js Help Desk Nov 21, 2024 Aug 27, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The js-support-ticket plugin before 2.0.6 for WordPress has CSRF.
CVE-2018-20974 1Joomsky 1Js Job Manager Nov 21, 2024 Aug 16, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The js-jobs plugin before 1.0.7 for WordPress has CSRF.
CVE-2018-9183 1Joomsky 1Js Jobs Nov 21, 2024 Apr 2, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 The Joom Sky JS Jobs extension before 1.2.1 for Joomla! has XSS.
CVE-2018-6006 1Joomsky 1Js Autoz Nov 21, 2024 Feb 17, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 SQL Injection exists in the JS Autoz 1.0.9 component for Joomla! via the vtype, pre, or prs parameter.
CVE-2018-5994 1Joomsky 1Js Jobs Nov 21, 2024 Feb 17, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 SQL Injection exists in the JS Jobs 1.1.9 component for Joomla! via the zipcode parameter in a newest-jobs request, or the ta parameter in a view_resume request.
CVE-2018-6007 1Joomsky 1Js Support Ticket Nov 21, 2024 Jan 29, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 CSRF exists in the JS Support Ticket 1.1.0 component for Joomla! and allows attackers to inject HTML or edit a ticket.

Previous 12