CVE-2025-22209

Publication date

2025-02-15 08:10:58

Family

Joomla

State

PUBLISHED

Description

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows authenticated attackers (administrator) to execute arbitrary SQL commands via the searchpaymentstatus parameter in the Employer Payment History search feature.