CVE-2025-22206

Published: 2025-02-04T15:15Z

Last Modified: 2025-02-06T11:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.2 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'fieldfor' parameter in the GDPR Field feature. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt