CVE-2020-8645
EUVD-2020-2949307.02.2020, 00:15
An issue was discovered in Simplejobscript.com SJS through 1.66. There is an unauthenticated SQL injection via the job applications search function. The vulnerable parameter is job_id. The function is getJobApplicationsByJobId(). The file is _lib/class.JobApplication.php.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| simplejobscript | simplejobscript | 𝑥 ≤ 1.66 |
𝑥
= Vulnerable software versions