Lucene search
K

132 matches found

Nuclei
Nuclei
added 14 hours ago76 views

JobMonster < 4.5.2.9 - Cross-Site Scripting

In the theme JobMonster 4.5.2.9 there is a XSS vulnerability as the input for the search form is provided through unsanitized GET requests. id: CVE-2022-1170 info: name: JobMonster 4.5.2.9 - Cross-Site Scripting author: Akincibor,ritikchaddha severity: medium description: | In the theme JobMonste...

6.1CVSS6.4AI score0.01836EPSS
Exploits1References3
NVD
NVD
added yesterday3 views

CVE-2026-57368

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Jobmonster noo-jobmonster allows Reflected XSS.This issue affects Jobmonster: from n/a through = 4.8.5...

7.1CVSS0.00251EPSS
Exploits0References1
CVE
CVE
added yesterday5 views

CVE-2026-57368

CVE-2026-57368 concerns the NooTheme Jobmonster WordPress theme (noo-jobmonster) with a reflected Cross-Site Scripting (XSS) vulnerability described as caused by improper neutralization of input during web page generation. Affected version range is Jobmonster up to and including 4.8.5. The vulner...

7.1CVSS6.1AI score0.00251EPSS
Exploits0References1
Cvelist
Cvelist
added yesterday30 views

CVE-2026-57368 WordPress Jobmonster theme <= 4.8.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Jobmonster noo-jobmonster allows Reflected XSS.This issue affects Jobmonster: from n/a through = 4.8.5...

7.1CVSS0.00251EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/07/07 8:38 a.m.7 views

WordPress Jobmonster theme <= 4.8.5 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by dutafi in WordPress Theme Jobmonster versions = 4.8.5...

7.1CVSS5.9AI score0.00251EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/26 5:3 p.m.5 views

CVE-2026-25340

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NooTheme Jobmonster noo-jobmonster allows Blind SQL Injection.This issue affects Jobmonster: from n/a through 4.8.4...

9.3CVSS5.9AI score0.00283EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.3 views

EUVD-2026-15651

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NooTheme Jobmonster noo-jobmonster allows Blind SQL Injection.This issue affects Jobmonster: from n/a through 4.8.4...

5.9AI score0.00283EPSS
Exploits0References2
NVD
NVD
added 2026/03/25 5:16 p.m.6 views

CVE-2026-25340

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NooTheme Jobmonster noo-jobmonster allows Blind SQL Injection.This issue affects Jobmonster: from n/a through 4.8.4...

9.3CVSS0.00283EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 4:14 p.m.3 views

CVE-2026-25340 WordPress Jobmonster theme < 4.8.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NooTheme Jobmonster noo-jobmonster allows Blind SQL Injection.This issue affects Jobmonster: from n/a through 4.8.4...

9.3CVSS5.9AI score0.00283EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/25 4:14 p.m.32 views

CVE-2026-25340 WordPress Jobmonster theme < 4.8.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NooTheme Jobmonster noo-jobmonster allows Blind SQL Injection.This issue affects Jobmonster: from n/a through 4.8.4...

9.3CVSS0.00283EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 4:14 p.m.15 views

CVE-2026-25340

CVE-2026-25340 affects WordPress/NooTheme Jobmonster plugin/theme versions prior to 4.8.4. The issue is an SQL Injection (Blind) caused by improper neutralization of SQL commands, enabling an attacker to perform blind queries. Exposure is described as affecting Jobmonster from unspecified version...

9.3CVSS5.9AI score0.00283EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.8 views

WordPress plugin Jobmonster SQL注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

9.3CVSS5.9AI score0.00283EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.7 views

PT-2026-27903

Name of the Vulnerable Software and Affected Versions NooTheme Jobmonster versions prior to 4.8.4 Description The software contains an Improper Neutralization of Special Elements used in an SQL Command issue, also known as a SQL Injection. This allows for Blind SQL Injection. The SQL command is...

9.3CVSS5.9AI score0.00283EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/03/23 1:6 p.m.6 views

WordPress Jobmonster theme < 4.8.4 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Phat RiO in WordPress Theme Jobmonster versions 4.8.4...

9.3CVSS5.9AI score0.00283EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/12 3:11 p.m.5 views

CVE-2025-67522

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in NooTheme Jobmonster noo-jobmonster allows PHP Local File Inclusion.This issue affects Jobmonster: from n/a through = 4.8.2...

7.5CVSS7.1AI score0.00385EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/12/12 5:57 a.m.8 views

WordPress Jobmonster Elementor Addon plugin <= 1.1.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Jobmonster Elementor Addon versions = 1.1.4...

9.8CVSS7AI score0.00385EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/12/12 5:10 a.m.7 views

WordPress Jobmonster theme <= 4.8.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Jobmonster versions = 4.8.2...

9.8CVSS7AI score0.00385EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/10 2:23 p.m.6 views

CVE-2025-67524

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in NooTheme Jobmonster Elementor Addon jobmonster-addon allows PHP Local File Inclusion.This issue affects Jobmonster Elementor Addon: from n/a through = 1.1.4...

7.5CVSS7.1AI score0.00385EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.6 views

EUVD-2025-202120

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in NooTheme Jobmonster Elementor Addon jobmonster-addon allows PHP Local File Inclusion.This issue affects Jobmonster Elementor Addon: from n/a through = 1.1.4...

6.6AI score0.00385EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/09 6:30 p.m.3 views

EUVD-2025-202122

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in NooTheme Jobmonster noo-jobmonster allows PHP Local File Inclusion.This issue affects Jobmonster: from n/a through = 4.8.2...

6.6AI score0.00385EPSS
Exploits0References2
Rows per page
Query Builder