132 matches found
WordPress Noo JobMonster plugin authentication bypass vulnerability
WordPress Noo JobMonster plugin is a recruitment theme on the WordPress platform, mainly used to build a job search and recruitment website, support for employers to post jobs, job seekers to submit resumes and other functions. WordPress Noo JobMonster plugin has an authentication bypass...
CVE-2025-5397
The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...
CVE-2025-5397
The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...
EUVD-2025-37307
The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...
CVE-2025-5397 Jobmonster - Job Board WordPress Theme <= 4.8.1 - Authentication Bypass
The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...
CVE-2025-5397 Jobmonster - Job Board WordPress Theme <= 4.8.1 - Authentication Bypass
The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...
CVE-2025-5397
The CVE-2025-5397 entry concerns the WordPress Noo JobMonster theme. Affected versions up to 4.8.1 contain an Authentication Bypass due to the check_login() function not properly verifying user identity before authentication, allowing unauthenticated attackers to bypass login and access administr...
WordPress Jobmonster theme <= 4.8.1 - Authentication Bypass vulnerability
Authentication Bypass vulnerability discovered by Thái An in WordPress Theme Jobmonster versions = 4.8.1...
VulnCheck KEV: CVE-2025-5397
The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...
WordPress Jobmonster Theme <= 4.8.1 is vulnerable to Broken Authentication
Software Jobmonster Type Theme Vulnerable versions = 4.8.1 Fixed in 4.8.2 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2025-5397 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 91f66baeb6e0 Credits Thái An...
PT-2025-44582
Name of the Vulnerable Software and Affected Versions Noo JobMonster theme for WordPress versions prior to 4.8.1 Description The Noo JobMonster theme for WordPress is susceptible to Authentication Bypass due to a flaw in the check login function. This function does not properly verify a user's...
WordPress plugin Noo JobMonster 安全漏洞
WordPress Noo JobMonster plugin is a recruitment theme on the WordPress platform, mainly used to build a job search and recruitment website, support for employers to post jobs, job seekers to submit resumes and other functions. WordPress Noo JobMonster plugin has an authentication bypass...
EUVD-2022-24512
Malicious code in bioql PyPI...
EUVD-2025-25361
Malicious code in bioql PyPI...
EUVD-2025-28647
Malicious code in bioql PyPI...
EUVD-2024-36886
Malicious code in bioql PyPI...
EUVD-2022-24508
Malicious code in bioql PyPI...
EUVD-2025-28648
Malicious code in bioql PyPI...
EUVD-2024-36887
Malicious code in bioql PyPI...
WordPress Jobmonster theme <= 4.7.8 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Jobmonster versions = 4.7.8...