Lucene search
K
PresstigersSimple Job Board

11 matches found

CVE
CVE
added 2024/04/09 6:59 p.m.95 views

CVE-2024-1813

CVE-2024-1813 – Simple Job Board (WordPress) is a PHP Object Injection vulnerability in all versions up to 2.11.0, caused by deserialization of untrusted input in job_board_applicant_list_columns_value. It allows unauthenticated attackers to inject a PHP object; with a POP chain from another plug...

9.8CVSS9.6AI score0.01106EPSS
CVE
CVE
added 2025/01/02 12:0 p.m.86 views

CVE-2023-47188

CVE-2023-47188 affects the WordPress plugin Simple Job Board (versions

9.8CVSS5.8AI score0.00436EPSS
CVE
CVE
added 2022/08/22 3:4 p.m.85 views

CVE-2022-2558

The CVE-2022-2558 issue affects the WordPress plugin Simple Job Board prior to version 2.10.0 . The vulnerability is a directory listing disclosure that allows public access to uploaded resumes in certain configurations. Affected component is the plugin’s file handling in those configurations, en...

5.3CVSS5.2AI score0.00787EPSS
CVE
CVE
added 2024/02/21 6:47 a.m.71 views

CVE-2024-0593

The CVE pertains to the WordPress plugin Simple Job Board . It reports insufficient authorization checks in the function fetch_quick_job() affecting all versions up to and including 2.10.8 , allowing unauthenticated attackers to fetch arbitrary (potentially password‑protected or private) posts co...

5.3CVSS6.3AI score0.00909EPSS
CVE
CVE
added 2019/08/13 4:34 p.m.53 views

CVE-2017-18498

The CVE affects the WordPress Simple Job Board plugin. Affected version range: before 2.4.4 (reported as before 2.4.4; other sources suggest

6.1CVSS6AI score0.00915EPSS
CVE
CVE
added 2024/08/24 7:33 a.m.52 views

CVE-2024-7351

CVE-2024-7351 affects the WordPress plugin “Simple Job Board” (versions up to and including 2.12.3). The vulnerability is a PHP Object Injection via deserialization of untrusted input when updating job applications, exploitable by authenticated users with Editor+ privileges. The initial disclosur...

7.2CVSS7AI score0.0062EPSS
CVE
CVE
added 2024/01/05 9:11 a.m.50 views

CVE-2023-52122

CVE-2023-52122 is a CSRF vulnerability in the WordPress plugin Simple Job Board (affected: Simple Job Board

8.8CVSS8.5AI score0.00223EPSS
CVE
CVE
added 2021/10/21 7:38 p.m.49 views

CVE-2021-39328

The WordPress plugin Simple Job Board is affected by CVE-2021-39328: an authenticated stored XSS in versions up to 2.9.4 caused by insufficient escaping of the $job_board_privacy_policy_label in privacy settings (class-simple-job-board-settings-privacy.php). An attacker with administrative access...

5.5CVSS4.8AI score0.00886EPSS
CVE
CVE
added 2023/11/10 1:46 p.m.38 views

CVE-2023-29440

CVE-2023-29440 describes a Cross-Site Request Forgery (CSRF) in the WordPress plugin Simple Job Board (PressTigers) versions <= 2.10.3. The issue is triggered by unauthenticated CSRF actions (sjb_save_settings_section) that could permit state-changing requests without user intent, as documente...

8.8CVSS8.9AI score0.00315EPSS
CVE
CVE
added 2025/05/15 8:7 p.m.31 views

CVE-2024-7761

CVE-2024-7761 affects the WordPress Simple Job Board plugin prior to version 2.12.2. The vulnerability is a Stored XSS that can be executed via the editor/admin interface by embedding a malicious script, potentially enabling an account takeover backdoor. Affected product: Simple Job Board WordPre...

6.1CVSS5.8AI score0.00315EPSS
CVE
CVE
added 2025/05/15 8:7 p.m.30 views

CVE-2024-7762

CVE-2024-7762 affects the WordPress plugin Simple Job Board (versions prior to 2.12.6). The vulnerability arises because the plugin does not prevent listing of uploaded files, allowing unauthenticated users to access and download uploaded resumes. Impact is limited to unauthorized disclosure of u...

3.7CVSS6.6AI score0.00344EPSS