Vulnerabilities > Joomsky > JS Jobs > 1.1.1

DATE CVE VULNERABILITY TITLE RISK
2019-12-19 CVE-2019-17527 SQL Injection vulnerability in Joomsky JS Jobs
dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child parameter.
network
low complexity
joomsky CWE-89
critical
 9.8
9.8
2018-04-02 CVE-2018-9183 Cross-site Scripting vulnerability in Joomsky JS Jobs
The Joom Sky JS Jobs extension before 1.2.1 for Joomla! has XSS.
network
low complexity
joomsky CWE-79
5.4
5.4