CVE-2019-17527

Published: 2019-12-19T21:15Z

Last Modified: 2024-11-21T04:32Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

dataForDepandantField in models/custormfields.php in the JS JOBS FREE extension before 1.2.7 for Joomla! allows SQL Injection via the index.php?option=com_jsjobs&task=customfields.getfieldtitlebyfieldandfieldfo child parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt