CVE-2025-22209

Published: 2025-02-15T09:15Z

Last Modified: 2025-02-21T13:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the 'searchpaymentstatus' parameter in the Employer Payment History search feature. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt