CyberSec.Space Logo
CVEブラウザに戻る

CVE-2020-7229

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0890%
EPSS Percentile38.18th
Published2020年1月21日
Last Modified2024年11月21日

Vulnerability Description

An issue was discovered in Simplejobscript.com SJS before 1.65. There is unauthenticated SQL injection via the search engine. The parameter is landing_location. The function is countSearchedJobs(). The file is _lib/class.Job.php.

Affected Platforms (CPE)

📦
Simplejobscript

Simplejobscript

< 1.65

References & Advisories

🔗 https://github.com/niteosoft/simplejobscript/issues/7
🔗 https://simplejobscript.com
🔗 https://github.com/niteosoft/simplejobscript/issues/7
🔗 https://simplejobscript.com

関連する脆弱性情報

CVE-2020-1189610.0

The Treck TCP/IP stack before 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling.

CVE-2020-1189710.0

The Treck TCP/IP stack before 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.

CVE-2020-1249310.0

An open port used for debugging in SWARCOs CPU LS4000 Series with versions starting with G4... grants root access to the device wi...

CVE-2020-135010.0

A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests, aka...