Vulnerabilities > Jobbex

DATE CVE VULNERABILITY TITLE RISK
2008-07-28 CVE-2008-3341 SQL Injection vulnerability in Jobbex Jobsite
Multiple SQL injection vulnerabilities in search_result.cfm in Jobbex JobSite allow remote attackers to execute arbitrary SQL commands via the (1) jobcountryid and (2) jobstateid parameters.
network
low complexity
jobbex CWE-89
7.5
2008-07-28 CVE-2008-3340 Cross-Site Scripting vulnerability in Jobbex Jobsite
Cross-site scripting (XSS) vulnerability in search_result.cfm in Jobbex JobSite allows remote attackers to inject arbitrary web script or HTML via the searchFor variable (possibly the opt parameter.)
network
jobbex CWE-79
4.3