Jobberbase
by Jobberbase
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-20447 | Cri | 0.64 | 9.8 | 0.02 | Feb 5, 2020 | Jobberbase 2.0 has SQL injection via the PATH_INFO to the jobs-in endpoint. | ||
| CVE-2019-16125 | Cri | 0.64 | 9.8 | 0.02 | Sep 9, 2019 | In Jobberbase 2.0, the parameter category is not sanitized in public/page_subscribe.php, leading to /subscribe SQL injection. |
- risk 0.64cvss 9.8epss 0.02
Jobberbase 2.0 has SQL injection via the PATH_INFO to the jobs-in endpoint.
- risk 0.64cvss 9.8epss 0.02
In Jobberbase 2.0, the parameter category is not sanitized in public/page_subscribe.php, leading to /subscribe SQL injection.