CVE-2025-49484

Sažetak

A SQL injection vulnerability in the JS Jobs plugin versions 1.0.0-1.4.1 for Joomla allows low-privilege users to execute arbitrary SQL commands via the 'cvid' parameter in the employee application feature.

Reference

https://github.com/AdamWallwork/CVEs/tree/main/2025/CVE-2025-49484
https://joomsky.com/js-jobs-joomla/
https://www.exploit-db.com/exploits/52373

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

31-07-2025 - 17:15

Objavljeno

18-07-2025 - 10:15