RSS   Vulnerabilities for 'Jobberbase'   RSS

2020-02-05
 
CVE-2019-20447

CWE-89
 

 
Jobberbase 2.0 has SQL injection via the PATH_INFO to the jobs-in endpoint.

 
2019-09-08
 
CVE-2019-16125

CWE-89
 

 
In Jobberbase 2.0, the parameter category is not sanitized in public/page_subscribe.php, leading to /subscribe SQL injection.

 


Copyright 2024, cxsecurity.com

 

Back to Top