Jobmonster@* Security Vulnerabilities and Issues — Jobmonster@* CVE List

Lucene search

NoothemeJobmonster*

4 matches found

CVE•added 2022/04/04 4:15 p.m.•64 views

CVE-2022-1170

In the Noo JobMonster WordPress theme before 4.5.2.9 JobMonster there is a XSS vulnerability as the input for the search form is provided through unsanitized GET requests.

6.1CVSS6.1AI score0.00931EPSS

CVE•added 2022/04/04 4:15 p.m.•59 views

CVE-2022-1166

The JobMonster Theme was vulnerable to Directory Listing in the /wp-content/uploads/jobmonster/ folder, as it did not include a default PHP file, or .htaccess file. This could expose personal data such as people's resumes. Although Directory Listing can be prevented by securely configuring the web ...

5.3CVSS5.2AI score0.00325EPSS

CVE•added 2024/07/12 2:15 p.m.•41 views

CVE-2024-37927

Improper Privilege Management vulnerability in NooTheme Jobmonster allows Privilege Escalation.This issue affects Jobmonster: from n/a through 4.7.0.

9.8CVSS9.6AI score0.00317EPSS

CVE•added 2024/07/12 2:15 p.m.•33 views

CVE-2024-37928

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in NooTheme Jobmonster allows File Manipulation.This issue affects Jobmonster: from n/a through 4.7.0.

8.6CVSS8.6AI score0.00359EPSS