Lucene search
+L

132 matches found

RedhatCVE
RedhatCVE
added 2025/08/30 6:17 p.m.4 views

CVE-2025-54738

Authentication Bypass Using an Alternate Path or Channel vulnerability in NooTheme Jobmonster noo-jobmonster allows Authentication Abuse.This issue affects Jobmonster: from n/a through = 4.7.9...

9.8CVSS5.9AI score0.00397EPSS
Exploits0References1
NVD
NVD
added 2025/08/28 1:16 p.m.5 views

CVE-2025-54738

Authentication Bypass Using an Alternate Path or Channel vulnerability in NooTheme Jobmonster noo-jobmonster allows Authentication Abuse.This issue affects Jobmonster: from n/a through = 4.7.9...

9.8CVSS0.00397EPSS
Exploits0References1
CVE
CVE
added 2025/08/28 12:37 p.m.27 views

CVE-2025-54738

CVE-2025-54738 describes an authentication bypass in the WordPress plugin/theme NooTheme Jobmonster (WordPress JobMonster). The vulnerability allows authentication abuse via an alternate path or channel, affecting Jobmonster versions from n/a up to and including 4.7.9. Evidence from multiple sour...

9.8CVSS5.9AI score0.00397EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/28 12:37 p.m.4 views

CVE-2025-54738 WordPress Jobmonster Theme <= 4.7.9 - Broken Authentication Vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in NooTheme Jobmonster allows Authentication Abuse. This issue affects Jobmonster: from n/a through 4.7.9...

9.8CVSS6.5AI score0.00397EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/28 12:37 p.m.12 views

CVE-2025-54738 WordPress Jobmonster Theme <= 4.7.9 - Broken Authentication Vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in NooTheme Jobmonster noo-jobmonster allows Authentication Abuse.This issue affects Jobmonster: from n/a through = 4.7.9...

9.8CVSS0.00397EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/28 12:0 a.m.5 views

WordPress plugin Jobmonster 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.8CVSS6.8AI score0.00397EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/28 12:0 a.m.9 views

PT-2025-35077

Name of the Vulnerable Software and Affected Versions: NooTheme Jobmonster versions through 4.7.9 Description: An Authentication Bypass Using an Alternate Path or Channel vulnerability exists in NooTheme Jobmonster, allowing Authentication Abuse. Recommendations: Update NooTheme Jobmonster to a...

9.8CVSS6.4AI score0.00397EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/08/24 12:34 p.m.6 views

CVE-2025-57888

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in NooTheme Jobmonster noo-jobmonster allows Retrieve Embedded Sensitive Data.This issue affects Jobmonster: from n/a through = 4.8.0...

5.3CVSS5.9AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/24 12:34 p.m.4 views

CVE-2025-57887

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Jobmonster noo-jobmonster allows Stored XSS.This issue affects Jobmonster: from n/a through = 4.8.0...

6.5CVSS5.9AI score0.00159EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/08/22 1:53 p.m.6 views

WordPress Jobmonster Theme <= 4.8.0 - Sensitive Data Exposure Vulnerability

Sensitive Data Exposure Vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Jobmonster versions = 4.8.0...

5.3CVSS6.9AI score0.00234EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/22 1:53 p.m.7 views

WordPress Jobmonster Theme <= 4.8.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Jobmonster versions = 4.8.0...

6.5CVSS6.2AI score0.00159EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/08/22 12:15 p.m.3 views

CVE-2025-57887

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Jobmonster noo-jobmonster allows Stored XSS.This issue affects Jobmonster: from n/a through = 4.8.0...

6.5CVSS0.00159EPSS
Exploits0References1
NVD
NVD
added 2025/08/22 12:15 p.m.5 views

CVE-2025-57888

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in NooTheme Jobmonster noo-jobmonster allows Retrieve Embedded Sensitive Data.This issue affects Jobmonster: from n/a through = 4.8.0...

5.3CVSS0.00234EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/22 11:59 a.m.13 views

CVE-2025-57888 WordPress Jobmonster Theme <= 4.8.0 - Sensitive Data Exposure Vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in NooTheme Jobmonster noo-jobmonster allows Retrieve Embedded Sensitive Data.This issue affects Jobmonster: from n/a through = 4.8.0...

5.3CVSS0.00234EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/22 11:59 a.m.3 views

CVE-2025-57888 WordPress Jobmonster Theme <= 4.8.0 - Sensitive Data Exposure Vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in NooTheme Jobmonster allows Retrieve Embedded Sensitive Data. This issue affects Jobmonster: from n/a through 4.8.0...

5.3CVSS6.5AI score0.00234EPSS
Exploits0References1
CVE
CVE
added 2025/08/22 11:59 a.m.25 views

CVE-2025-57888

CVE-2025-57888 is a WordPress Jobmonster theme vulnerability (NooTheme) reported to affect versions up to 4.8.0. The issue exposes sensitive system information to an unauthorized control sphere, potentially enabling data leakage. Multiple sources (NVD, CVE lists, Patchstack, Red Hat advisory) cor...

5.3CVSS5.9AI score0.00234EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/22 11:59 a.m.2 views

CVE-2025-57887 WordPress Jobmonster Theme <= 4.8.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Jobmonster allows Stored XSS. This issue affects Jobmonster: from n/a through 4.8.0...

6.5CVSS6.4AI score0.00159EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/22 11:59 a.m.12 views

CVE-2025-57887 WordPress Jobmonster Theme <= 4.8.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Jobmonster noo-jobmonster allows Stored XSS.This issue affects Jobmonster: from n/a through = 4.8.0...

6.5CVSS0.00159EPSS
Exploits0References1
CVE
CVE
added 2025/08/22 11:59 a.m.19 views

CVE-2025-57887

CVE-2025-57887 describes a stored cross-site scripting vulnerability in the NooTheme Jobmonster WordPress theme, affecting versions up to 4.8.0. The root cause is improper neutralization of input during web page generation, enabling injection of malicious scripts into pages (Stored XSS). The CVE’...

6.5CVSS5.9AI score0.00159EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/22 8:30 a.m.5 views

CVE-2025-53201

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in NooTheme Jobmonster noo-jobmonster allows Reflected XSS.This issue affects Jobmonster: from n/a through = 4.7.8...

7.1CVSS5.9AI score0.0028EPSS
Exploits0References1
Rows per page
Query Builder