Lucene search
K

132 matches found

cnvd
cnvd
added 2025/11/05 12:0 a.m.2 views

WordPress Noo JobMonster plugin authentication bypass vulnerability

WordPress Noo JobMonster plugin is a recruitment theme on the WordPress platform, mainly used to build a job search and recruitment website, support for employers to post jobs, job seekers to submit resumes and other functions. WordPress Noo JobMonster plugin has an authentication bypass...

9.8CVSS7.1AI score0.01005EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/11/01 6:58 a.m.5 views

CVE-2025-5397

The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...

9.8CVSS6.2AI score0.01005EPSS
Exploits0References1
nvd
nvd
added 2025/10/31 7:15 a.m.6 views

CVE-2025-5397

The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...

9.8CVSS0.01005EPSS
Exploits0References2
euvd
euvd
added 2025/10/31 6:42 a.m.6 views

EUVD-2025-37307

The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...

9.8CVSS5.7AI score0.01005EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/10/31 6:42 a.m.8 views

CVE-2025-5397 Jobmonster - Job Board WordPress Theme <= 4.8.1 - Authentication Bypass

The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...

9.8CVSS5.8AI score0.01005EPSS
Exploits0References2
cvelist
cvelist
added 2025/10/31 6:42 a.m.11 views

CVE-2025-5397 Jobmonster - Job Board WordPress Theme <= 4.8.1 - Authentication Bypass

The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...

9.8CVSS0.01005EPSS
Exploits0References2
cve
cve
added 2025/10/31 6:42 a.m.32 views

CVE-2025-5397

The CVE-2025-5397 entry concerns the WordPress Noo JobMonster theme. Affected versions up to 4.8.1 contain an Authentication Bypass due to the check_login() function not properly verifying user identity before authentication, allowing unauthenticated attackers to bypass login and access administr...

9.8CVSS5.8AI score0.01005EPSS
In wildExploits0References2
patchstack
patchstack
added 2025/10/31 3:18 a.m.6 views

WordPress Jobmonster theme <= 4.8.1 - Authentication Bypass vulnerability

Authentication Bypass vulnerability discovered by Thái An in WordPress Theme Jobmonster versions = 4.8.1...

9.8CVSS7AI score0.01005EPSS
Exploits0References1Affected Software1
vulncheck_kev
vulncheck_kev
added 2025/10/31 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-5397

The Noo JobMonster theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.8.1. This is due to the checklogin function not properly verifying a user's identity prior to successfully authenticating them This makes it possible for unauthenticated attackers...

9.8CVSS5.6AI score0.01005EPSS
In wildExploits0References3
patchstack
patchstack
added 2025/10/31 12:0 a.m.8 views

WordPress Jobmonster Theme <= 4.8.1 is vulnerable to Broken Authentication

Software Jobmonster Type Theme Vulnerable versions = 4.8.1 Fixed in 4.8.2 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2025-5397 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 91f66baeb6e0 Credits Thái An...

9.8CVSS7.1AI score0.01005EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2025/10/31 12:0 a.m.5 views

PT-2025-44582

Name of the Vulnerable Software and Affected Versions Noo JobMonster theme for WordPress versions prior to 4.8.1 Description The Noo JobMonster theme for WordPress is susceptible to Authentication Bypass due to a flaw in the check login function. This function does not properly verify a user's...

9.8CVSS7.7AI score0.01005EPSS
Exploits0References14
cnnvd
cnnvd
added 2025/10/31 12:0 a.m.4 views

WordPress plugin Noo JobMonster 安全漏洞

WordPress Noo JobMonster plugin is a recruitment theme on the WordPress platform, mainly used to build a job search and recruitment website, support for employers to post jobs, job seekers to submit resumes and other functions. WordPress Noo JobMonster plugin has an authentication bypass...

9.8CVSS7.8AI score0.01005EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-24512

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.01836EPSS
Exploits1References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25361

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.0028EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28647

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00159EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-36886

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00487EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-24508

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.01528EPSS
Exploits1References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-28648

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00234EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-36887

Malicious code in bioql PyPI...

8.6CVSS6.6AI score0.00589EPSS
Exploits0References1
patchstack
patchstack
added 2025/08/31 11:22 a.m.4 views

WordPress Jobmonster theme <= 4.7.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Jobmonster versions = 4.7.8...

7.1CVSS6.1AI score0.00214EPSS
Exploits0Affected Software1
Rows per page
Query Builder