Lucene search
K

21 matches found

EUVD
EUVD
added 2026/03/25 6:31 p.m.4 views

EUVD-2026-15542

Missing Authorization vulnerability in BlueGlass Interactive AG Jobs for WordPress job-postings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Jobs for WordPress: from n/a through = 2.8...

5.8AI score0.00353EPSS
Exploits0References2
NVD
NVD
added 2026/03/25 5:16 p.m.4 views

CVE-2026-23806

Missing Authorization vulnerability in BlueGlass Interactive AG Jobs for WordPress job-postings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Jobs for WordPress: from n/a through = 2.8...

7.5CVSS0.00353EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 4:14 p.m.10 views

CVE-2026-23806

CVE-2026-23806 corresponds to a Missing Authorization / Broken Access Control vulnerability in the WordPress plugin Jobs for WordPress, affecting versions through 2.8. The issue arises from incorrectly configured access control security levels, potentially enabling unauthorized access or actions ...

7.5CVSS5.8AI score0.00353EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 4:14 p.m.2 views

CVE-2026-23806 WordPress Jobs for WordPress plugin <= 2.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in BlueGlass Interactive AG Jobs for WordPress job-postings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Jobs for WordPress: from n/a through = 2.8...

7.5CVSS5.9AI score0.00353EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/25 4:14 p.m.26 views

CVE-2026-23806 WordPress Jobs for WordPress plugin <= 2.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in BlueGlass Interactive AG Jobs for WordPress job-postings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Jobs for WordPress: from n/a through = 2.8...

7.5CVSS0.00353EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/24 1:10 p.m.30 views

CVE-2025-68597 WordPress Jobs for WordPress plugin <= 2.8.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BlueGlass Interactive AG Jobs for WordPress job-postings allows Stored XSS.This issue affects Jobs for WordPress: from n/a through = 2.8.1...

6.5CVSS0.0013EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.3 views

WordPress plugin Jobs for WordPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

6.5CVSS5.9AI score0.0013EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-16604

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00457EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2025/06/23 8:40 a.m.5 views

CVE-2025-50050

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BlueGlass Interactive AG Jobs for WordPress job-postings allows Stored XSS.This issue affects Jobs for WordPress: from n/a through = 2.7.14...

6.5CVSS5.9AI score0.00197EPSS
Exploits0References1
NVD
NVD
added 2025/06/20 3:15 p.m.20 views

CVE-2025-50050

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BlueGlass Interactive AG Jobs for WordPress job-postings allows Stored XSS.This issue affects Jobs for WordPress: from n/a through = 2.7.14...

6.5CVSS0.00197EPSS
Exploits0References1
CVE
CVE
added 2025/06/20 3:3 p.m.22 views

CVE-2025-50050

CVE-2025-50050 concerns WordPress plugin Jobs for WordPress (WordPress plugin: Job Postings) versions up to 2.7.12, with an Stored Cross-Site Scripting (XSS) vulnerability caused by improper input neutralization during web page generation. The CVE is tied to stored XSS in the plugin, which could ...

6.5CVSS5.9AI score0.00197EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.4 views

WordPress plugin Jobs for WordPress 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS5.8AI score0.00197EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/26 9:21 a.m.9 views

CVE-2025-1310 Jobs for WordPress <= 2.7.11 - Authenticated (Subscriber+) Arbitrary File Read

The Jobs for WordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.7.11 via the 'jobpostingsgetfile' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the contents of arbitrary files...

6.5CVSS6.6AI score0.0067EPSS
Exploits0References3
CVE
CVE
added 2025/03/26 9:21 a.m.63 views

CVE-2025-1310

CVE-2025-1310 affects the WordPress plugin Job Postings (Jobs for WordPress) up to version 2.7.11. Affected component: directory traversal via the job_postings_get_file parameter. Exploitation requires authenticated access at Subscriber level or higher, enabling reading of arbitrary server files ...

6.5CVSS6.6AI score0.0067EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/26 12:0 a.m.4 views

WordPress plugin Jobs for WordPress 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

6.5CVSS8.7AI score0.0067EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/11/15 8:5 a.m.5 views

WordPress Jobs for WordPress plugin < 2.7.8 - Contributor+ Stored XSS vulnerability

Contributor+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Jobs for WordPress versions 2.7.8...

5.9CVSS6.1AI score0.00341EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2024/11/15 12:0 a.m.5 views

WordPress plugin Jobs for WordPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

5.9CVSS6AI score0.00341EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/04/18 9:33 a.m.15 views

CVE-2024-2833 Jobs for WordPress <= 2.7.5 - Reflected Cross-Site Scripting via job-search

The Jobs for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘job-search’ parameter in all versions up to, and including, 2.7.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

6.1CVSS6.1AI score0.00385EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/18 12:0 a.m.4 views

PT-2024-22394 · WordPress · Jobs For Wordpress

Name of the Vulnerable Software and Affected Versions: Jobs for WordPress plugin for WordPress versions up to, and including, 2.7.5 Description: The issue is related to Reflected Cross-Site Scripting via the job-search parameter due to insufficient input sanitization and output escaping. This...

6.1CVSS6.4AI score0.00385EPSS
Exploits0References5
OSV
OSV
added 2024/03/18 7:15 p.m.3 views

CVE-2024-0820

The Jobs for WordPress plugin before 2.7.4 does not sanitise and escape some parameters, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

5.4CVSS5.8AI score0.00457EPSS
Exploits2References1
Rows per page
Query Builder