cbcvebase.

Joomsky.Com Js Jobs Component For Joomla vulnerabilities

5 known vulnerabilities affecting joomsky.com/js_jobs_component_for_joomla.

Total CVEs
5
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2025-49484P2HIGHCVSS 8.7PoCv1.0.0-1.4.12025-07-18
CVE-2025-49484 [HIGH] CWE-89 CVE-2025-49484: A SQL injection vulnerability in the JS Jobs plugin versions 1.0.0-1.4.1 for Joomla allows low-privi A SQL injection vulnerability in the JS Jobs plugin versions 1.0.0-1.4.1 for Joomla allows low-privilege users to execute arbitrary SQL commands via the 'cvid' parameter in the employee application feature.
nvd
CVE-2025-54475P3HIGHCVSS 8.7v1.3.2-1.4.42025-08-15
CVE-2025-54475 [HIGH] CWE-89 CVE-2025-54475: A SQL injection vulnerability in the JS Jobs plugin versions 1.3.2-1.4.4 for Joomla allows low-privi A SQL injection vulnerability in the JS Jobs plugin versions 1.3.2-1.4.4 for Joomla allows low-privilege users to execute arbitrary SQL commands.
nvd
CVE-2025-22206P3MEDIUMCVSS 4.7v1.1.5-1.4.22025-02-04
CVE-2025-22206 [MEDIUM] CWE-89 CVE-2025-22206: A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.2 for Joomla allows authentic A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.2 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'fieldfor' parameter in the GDPR Field feature.
nvd
CVE-2025-22208P4MEDIUMCVSS 4.7v1.1.5-1.4.32025-02-15
CVE-2025-22208 [MEDIUM] CWE-89 CVE-2025-22208: A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authentic A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'filter_email' parameter in the GDPR Erase Data Request search feature.
nvd
CVE-2025-22209P4MEDIUMCVSS 4.7v1.1.5-1.4.32025-02-15
CVE-2025-22209 [MEDIUM] CWE-89 CVE-2025-22209: A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authentic A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature.
nvd
Joomsky.Com Js Jobs Component For Joomla vulnerabilities | cvebase