VYPR
Vendor

Simplejobscript.com

Products
2
CVEs
3
Across products
4
Status
Private

Products

2

Recent CVEs

3
  • CVE-2020-8645CriFeb 7, 2020
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Simplejobscript.com SJS through 1.66. There is an unauthenticated SQL injection via the job applications search function. The vulnerable parameter is job_id. The function is getJobApplicationsByJobId(). The file is _lib/class.JobApplication.php.

  • CVE-2020-8440CriJan 31, 2020
    risk 0.64cvss 9.8epss 0.03

    controllers/page_apply.php in Simplejobscript.com SJS through 1.66 is prone to unauthenticated Remote Code Execution by uploading a PHP script as a resume.

  • CVE-2020-7229CriJan 21, 2020
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in Simplejobscript.com SJS before 1.65. There is unauthenticated SQL injection via the search engine. The parameter is landing_location. The function is countSearchedJobs(). The file is _lib/class.Job.php.