SQL Injection Vulnerability in Jobberbase 2.0's public/page_subscribe.php

SQL Injection Vulnerability in Jobberbase 2.0's public/page_subscribe.php

CVE-2019-16125 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In Jobberbase 2.0, the parameter category is not sanitized in public/page_subscribe.php, leading to /subscribe SQL injection.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.