Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:31 p.m.19 views

CVE-2023-4933

The WP Job Openings WordPress plugin before 3.4.3 does not block listing the contents of the directories where it stores attachments to job applications, allowing unauthenticated visitors to list and download private attachments if the autoindex feature of the web server is enabled...

5.3CVSS6.6AI score0.00541EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-49382

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00364EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:14 a.m.7 views

CVE-2023-45061

Missing Authorization vulnerability in awsm.in WP Job Openings wp-job-openings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Openings: from n/a through = 3.4.1...

5.3CVSS5.8AI score0.00364EPSS
Exploits0References1
NVD
NVD
added 2025/01/02 12:15 p.m.7 views

CVE-2023-45061

Missing Authorization vulnerability in awsm.in WP Job Openings wp-job-openings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Openings: from n/a through = 3.4.1...

5.3CVSS0.00364EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 11:59 a.m.13 views

CVE-2023-45061 WordPress WP Job Openings plugin <= 3.4.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in awsm.in WP Job Openings wp-job-openings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Openings: from n/a through = 3.4.1...

5.3CVSS0.00364EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 11:59 a.m.42 views

CVE-2023-45061

CVE-2023-45061 affects the WordPress plugin WP Job Openings (versions &lt;= 3.4.1). The vulnerability is a Missing Authorization / Broken Access Control issue, exploitable by unauthenticated users due to incorrectly configured access control. Patchstack documentation confirms the issue is low sev...

5.3CVSS5.8AI score0.00364EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/02 12:0 a.m.6 views

WordPress plugin WP Job Openings 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS6.7AI score0.00364EPSS
Exploits0References1
OSV
OSV
added 2023/10/16 8:15 p.m.5 views

CVE-2023-4933

The WP Job Openings WordPress plugin before 3.4.3 does not block listing the contents of the directories where it stores attachments to job applications, allowing unauthenticated visitors to list and download private attachments if the autoindex feature of the web server is enabled...

5.3CVSS7.3AI score0.00541EPSS
Exploits2References1
Prion
Prion
added 2023/10/16 8:15 p.m.22 views

Code injection

The WP Job Openings WordPress plugin before 3.4.3 does not block listing the contents of the directories where it stores attachments to job applications, allowing unauthenticated visitors to list and download private attachments if the autoindex feature of the web server is enabled...

5CVSS5.2AI score0.00541EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2023/10/16 12:0 a.m.8 views

WordPress plugin WP Job Openings Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability in the WordPress...

5.3CVSS6.8AI score0.00541EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2023/10/16 12:0 a.m.10 views

PT-2023-31170 · WordPress · Wp Job Openings

Name of the Vulnerable Software and Affected Versions: WP Job Openings WordPress plugin versions prior to 3.4.3 Description: The issue allows unauthenticated visitors to list and download private attachments if the autoindex feature of the web server is enabled, due to the plugin not blocking the...

5.3CVSS5.9AI score0.00541EPSS
Exploits2References7
Patchstack
Patchstack
added 2023/10/03 12:0 a.m.10 views

WordPress WP Job Openings Plugin <= 3.4.1 is vulnerable to Broken Access Control

Software WP Job Openings Type Plugin Vulnerable versions = 3.4.1 Fixed in 3.4.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-45061 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 80557dfd2883 Credits Revan Arifio Required privile...

6.5AI score0.00364EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/09/27 12:0 a.m.23 views

WordPress WP Job Openings Plugin <= 3.4.2 is vulnerable to Sensitive Data Exposure

Software WP Job Openings Type Plugin Vulnerable versions = 3.4.2 Fixed in 3.4.3 OWASP Top 10 A5: Security Misconfiguration Classification Sensitive Data Exposure CVE CVE-2023-4933 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID 654671e3575f Credits Dmitrii Ignatyev Require...

5.3CVSS6.9AI score0.00541EPSS
Exploits2References3Affected Software1
wpexploit
wpexploit
added 2023/09/25 12:0 a.m.186 views

WP Job Openings < 3.4.3 - Sensitive Data Exposure via Directory Listing

Description The plugin does not block listing the contents of the directories where it stores attachments to job applications, allowing unauthenticated visitors to list and download private attachments if the autoindex feature of the web server is enabled...

5.3CVSS5.4AI score0.00541EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2023/09/25 12:0 a.m.20 views

WP Job Openings < 3.4.3 - Sensitive Data Exposure via Directory Listing

Description The plugin does not block listing the contents of the directories where it stores attachments to job applications, allowing unauthenticated visitors to list and download private attachments if the autoindex feature of the web server is enabled. PoC...

5.3CVSS5.3AI score0.00541EPSS
Exploits2References1Affected Software1
FireEye
FireEye
added 2019/09/07 5:0 p.m.28 views

Open Sourcing StringSifter

Malware analysts routinely use the Strings program during static analysis in order to inspect a binary's printable characters. However, identifying relevant strings by hand is time consuming and prone to human error. Larger binaries produce upwards of thousands of strings that can quickly evoke...

0.4AI score
Exploits0References12
Hacker One
Hacker One
added 2017/12/23 1:23 a.m.39 views

Razer US: SQL Injection on careers.razerzone.com within the Admin interface without any access credentials

The researcher discovered a SQL Injection vulnerability on our careers.razerzone.com host, which is used to list job openings for Razer worldwide and receive application submissions from potential hires. This vulnerability could have allowed the exfiltration of admin credentials as well as person...

8.4AI score
Exploits0
0day.today
0day.today
added 2010/12/05 12:0 a.m.19 views

ASPSiteware JobPost SQL injection Vulnerability

Exploit for asp platform in category web applications =============================================== ASPSiteware JobPost SQL injection Vulnerability =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 3 3 3 3 7 /' \ /'\ /'\ /\ ...

7.1AI score
Exploits0
Rows per page
Query Builder