VYPR
Vendor

Jobberbase

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2019-20447CriFeb 5, 2020
    risk 0.64cvss 9.8epss 0.02

    Jobberbase 2.0 has SQL injection via the PATH_INFO to the jobs-in endpoint.

  • CVE-2019-16125CriSep 9, 2019
    risk 0.64cvss 9.8epss 0.02

    In Jobberbase 2.0, the parameter category is not sanitized in public/page_subscribe.php, leading to /subscribe SQL injection.