Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

JoomSky — Vulnerabilities & Security Advisories 20

Browse all 20 CVE security advisories affecting JoomSky. AI-powered Chinese analysis, POCs, and references for each vulnerability.

JoomSky operates as a provider of enterprise resource planning and customer relationship management solutions, primarily targeting small to medium-sized businesses seeking integrated operational tools. Security audits have identified twenty confirmed Common Vulnerabilities and Exposures (CVEs) associated with the platform, indicating a persistent pattern of implementation flaws. The most prevalent vulnerability classes include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from insufficient input validation and improper access controls. Privilege escalation issues further compound these risks, allowing unauthorized users to gain administrative access. While specific major public breaches have not been widely documented in mainstream media, the high volume of CVEs suggests systemic weaknesses in the codebase’s security architecture. Organizations utilizing JoomSky must prioritize rigorous patch management and continuous vulnerability scanning to mitigate these known exposure vectors and prevent potential data compromise.

Found 10 results / 20Clear Filters
Top products by JoomSky: JS Job Manager JS Help Desk WP Vehicle Manager
CVE IDTitleCVSSSeverityPublished
CVE-2025-58234 WordPress JS Job Manager Plugin <= 2.0.2 - Cross Site Scripting (XSS) Vulnerability — JS Job ManagerCWE-79 6.5 Medium2025-09-22
CVE-2025-32626 WordPress JS Job Manager plugin <= 2.0.2 - SQL Injection vulnerability — JS Job ManagerCWE-89 9.3 Critical2025-04-17
CVE-2025-32660 WordPress JS Job Manager plugin <= 2.0.2 - Arbitrary File Upload vulnerability — JS Job ManagerCWE-434 10.0 Critical2025-04-17
CVE-2025-32627 WordPress JS Job Manager plugin <= 2.0.2 - Local File Inclusion vulnerability — JS Job ManagerCWE-98 8.1 High2025-04-11
CVE-2025-32146 WordPress JS Job Manager plugin <= 2.0.2 - Local File Inclusion vulnerability — JS Job ManagerCWE-98 8.8 High2025-04-04
CVE-2025-31868 WordPress JS Job Manager plugin <= 2.0.2 - Broken Access Control vulnerability — JS Job ManagerCWE-862 5.3 Medium2025-04-01
CVE-2025-31867 WordPress JS Job Manager Plugin <= 2.0.2 - Insecure Direct Object References (IDOR) vulnerability — JS Job ManagerCWE-639 5.4 Medium2025-04-01
CVE-2023-28689 WordPress JS Job Manager plugin <= 2.0.0 - Broken Access Control vulnerability — JS Job ManagerCWE-862 6.5 Medium2024-12-09
CVE-2023-31087 WordPress JS Job Manager Plugin <=2.0.0 is vulnerable to Cross Site Request Forgery (CSRF) — JS Job ManagerCWE-352 5.4 Medium2023-11-09
CVE-2023-25963 WordPress JS Job Manager Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS) — JS Job ManagerCWE-79 5.9 Medium2023-06-16

This page lists every published CVE security advisory associated with JoomSky. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.