5 matches found
CVE-2023-6978
The WP Job Manager – Company Profiles plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'company' parameter in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inje...
CVE-2023-6978
The WP Job Manager – Company Profiles plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'company' parameter in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inje...
CVE-2023-6978
creationtimestamp| type| source ---|---|--- 2024-12-04 07:41:30+00:00| seen| https://infosec.exchange/users/cve/statuses/113593423627352126 2024-12-04 10:03:48+00:00| seen| https://t.me/cvedetector/11961...
CVE-2023-6978 WP Job Manager – Company Profiles <= 1.7 - Reflected Cross-Site Scripting
The WP Job Manager – Company Profiles plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'company' parameter in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inje...
CVE-2023-6978
CVE-2023-6978 affects WP Job Manager – Company Profiles (WordPress). The vulnerability is Reflected Cross-Site Scripting via the 'company' parameter in versions up to 1.7, caused by insufficient input sanitization and output escaping. Exploitation requires a user to click a crafted link (unauthen...