CVE-2026-25376 WordPress Addon Jobsearch Chat plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability

🗓️ 25 Mar 2026 16:14:46Reported by PatchstackType

CVE-2026-25376: WordPress Addon Jobsearch Chat plugin <=3.0 has reflected cross site scripting.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2026-25376	7 Apr 202610:30	–	circl
CNNVD	WordPress plugin Addon Jobsearch Chat 安全漏洞	25 Mar 202600:00	–	cnnvd
CNVD	WordPress Plugin Addon Jobsearch Chat Cross-Site Scripting Vulnerability	31 Mar 202600:00	–	cnvd
CVE	CVE-2026-25376	25 Mar 202616:14	–	cve
EUVD	EUVD-2026-15694	25 Mar 202618:31	–	euvd
NVD	CVE-2026-25376	25 Mar 202617:16	–	nvd
Patchstack	WordPress Addon Jobsearch Chat plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability	23 Mar 202613:15	–	patchstack
Positive Technologies	PT-2026-27927	25 Mar 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-25376	26 Mar 202617:04	–	redhatcve
Vulnrichment	CVE-2026-25376 WordPress Addon Jobsearch Chat plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability	25 Mar 202616:14	–	vulnrichment

[
  {
    "collectionURL": "https://themeforest.net",
    "defaultStatus": "unaffected",
    "packageName": "addon-jobsearch-chat",
    "product": "Addon Jobsearch Chat",
    "vendor": "eyecix",
    "versions": [
      {
        "changes": [
          {
            "at": "3.1",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "3.0",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/Wordpress/Plugin/addon-jobsearch-chat/vulnerability/wordpress-addon-jobsearch-chat-plugin-3-0-reflected-cross-site-scripting-xss-vulnerability

28 Apr 2026 16:14Current

CVSS 3.17.1

EPSS0.00175

CWE-79