High severityNVD Advisory· Published Jul 18, 2025· Updated Apr 15, 2026

CVE-2025-49484

Description

A SQL injection vulnerability in the JS Jobs plugin versions 1.0.0-1.4.1 for Joomla allows low-privilege users to execute arbitrary SQL commands via the 'cvid' parameter in the employee application feature.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/AdamWallwork/CVEs/tree/main/2025/CVE-2025-49484nvd
joomsky.com/js-jobs-joomla/nvd
www.exploit-db.com/exploits/52373nvd

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000