CVE-2019-25740
Deferred Deferred - Pending Action
Arbitrary File Deletion in Joomla com_jsjobs

Publication date: 2026-06-04

Last updated on: 2026-06-04

Assigner: VulnCheck

Description
Joomla com_jsjobs 1.2.6 contains an arbitrary file deletion vulnerability that allows authenticated attackers to delete files by manipulating custom userfield parameters. Attackers can send POST requests to the job.savejob task with path traversal sequences in the field_2 parameter to delete arbitrary files accessible to the web server.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-04
Last Modified
2026-06-04
Generated
2026-06-25
AI Q&A
2026-06-04
EPSS Evaluated
2026-06-23
NVD
CVE-2019-25740
EUVD
EUVD-2019-20176
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
joomla com_jsjobs 1.2.6
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

The vulnerability exists in Joomla com_jsjobs version 1.2.6 and allows authenticated attackers to delete arbitrary files on the web server.

Attackers exploit insufficient input validation in custom userfield parameters, specifically by sending POST requests to the job.savejob task with path traversal sequences in the field_2 parameter.

This manipulation enables attackers to specify file paths for deletion, leading to arbitrary file deletion on the server.

Compliance Impact

The provided information does not specify how the arbitrary file deletion vulnerability in Joomla com_jsjobs 1.2.6 affects compliance with common standards and regulations such as GDPR or HIPAA.

Impact Analysis

This vulnerability can significantly impact the integrity and availability of your Joomla installation.

An authenticated attacker can delete arbitrary files on the web server, including potentially sensitive or critical files such as configuration files.

This can lead to service disruption, loss of important data, and compromise of the website's functionality.

Detection Guidance

This vulnerability can be detected by monitoring for suspicious POST requests to the job.savejob task that include path traversal sequences in the field_2 parameter or similar custom userfield parameters.

Specifically, you can look for POST requests containing parameters like 'field_2' or 'ufield926_2' with values including '../' sequences indicating path traversal attempts.

Commands to detect such activity might include using network traffic inspection tools or web server logs analysis. For example, using grep on web server access logs to find suspicious POST requests:

  • grep -i "POST" /var/log/apache2/access.log | grep "job.savejob" | grep "field_2="
  • grep -i "POST" /var/log/apache2/access.log | grep "job.savejob" | grep "ufield926_2="

Additionally, monitoring for unexpected file deletions or changes in critical files on the server can help detect exploitation attempts.

Mitigation Strategies

Immediate mitigation steps include restricting or disabling access to the vulnerable com_jsjobs component version 1.2.6 until a patch or update is applied.

Ensure that only trusted authenticated users have access to the job.savejob task, as exploitation requires authentication.

Monitor and block suspicious POST requests containing path traversal sequences in the field_2 or similar parameters.

Apply input validation and sanitization on user-supplied parameters to prevent path traversal sequences from being processed.

If possible, update the com_jsjobs component to a version where this vulnerability is fixed.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2019-25740. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart