Lucene search

K
WpjobportalWp Job Portal

13 matches found

CVE
CVE
added 2024/01/17 6:15 p.m.56 views

CVE-2022-41786

Missing Authorization vulnerability in WP Job Portal WP Job Portal – A Complete Job Board.This issue affects WP Job Portal – A Complete Job Board: from n/a through 2.0.1.

9.8CVSS9.3AI score0.0009EPSS
CVE
CVE
added 2024/09/04 3:15 a.m.44 views

CVE-2024-7950

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Local File Inclusion, Arbitrary Settings Update, and User Creation in all versions up to, and including, 2.1.6 via several functions called by the 'checkFormRequest' function. Th...

9.8CVSS9.8AI score0.01182EPSS
CVE
CVE
added 2024/12/14 7:15 a.m.40 views

CVE-2024-11711

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'resumeid' parameter in all versions up to, and including, 2.2.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparat...

7.5CVSS7.7AI score0.00791EPSS
CVE
CVE
added 2024/12/14 7:15 a.m.40 views

CVE-2024-11712

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the getResumeFileDownloadById() function in all versions up to, and including, 2.2.2. This makes it possible for ...

5.3CVSS5.2AI score0.00159EPSS
CVE
CVE
added 2024/01/05 8:15 a.m.38 views

CVE-2023-52184

Cross-Site Request Forgery (CSRF) vulnerability in WP Job Portal WP Job Portal – A Complete Job Board.This issue affects WP Job Portal – A Complete Job Board: from n/a through 2.0.6.

8.8CVSS8.6AI score0.0007EPSS
CVE
CVE
added 2024/12/14 7:15 a.m.38 views

CVE-2024-11714

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'ff' parameter of the getFieldsForVisibleCombobox() function in all versions up to, and including, 2.2.2 due to insufficient escaping on the user supplied p...

4.9CVSS5.3AI score0.00134EPSS
CVE
CVE
added 2024/06/21 1:15 p.m.38 views

CVE-2024-35760

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Job Portal allows Stored XSS.This issue affects WP Job Portal: from n/a through 2.1.3.

5.9CVSS5.7AI score0.0012EPSS
CVE
CVE
added 2024/11/18 10:15 p.m.38 views

CVE-2024-52389

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Job Portal allows Stored XSS.This issue affects WP Job Portal: from n/a through 2.2.0.

6.5CVSS6.4AI score0.00034EPSS
CVE
CVE
added 2024/08/18 10:15 p.m.37 views

CVE-2024-43266

Authorization Bypass Through User-Controlled Key vulnerability in WP Job Portal.This issue affects WP Job Portal: from n/a through 2.1.6.

8.8CVSS5.5AI score0.00233EPSS
CVE
CVE
added 2024/12/14 7:15 a.m.36 views

CVE-2024-11710

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'fieldfor', 'visibleParent' and 'id' parameters in all versions up to, and including, 2.2.2 due to insufficient escaping on the user supplied parameter and ...

4.9CVSS5.3AI score0.00125EPSS
CVE
CVE
added 2024/12/14 7:15 a.m.36 views

CVE-2024-11715

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the assignUserRole() function in all versions up to, and including, 2.2.2. This makes it possible for unauthenticated att...

9.8CVSS5AI score0.00201EPSS
CVE
CVE
added 2024/06/21 1:15 p.m.36 views

CVE-2024-35759

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Job Portal allows Stored XSS.This issue affects WP Job Portal: from n/a through 2.1.3.

5.9CVSS5.7AI score0.00067EPSS
CVE
CVE
added 2024/12/14 7:15 a.m.34 views

CVE-2024-11713

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'page_id' parameter of the wpjobportal_deactivate() function in all versions up to, and including, 2.2.2 due to insufficient escaping on the user supplied p...

4.9CVSS5.3AI score0.00134EPSS