Lucene search
Ethicalhack3rWPEX-ID:93C33963-E2ED-403E-9E26-5379CD50D849HistoryAug 04, 2015 - 12:00 a.m.
Job Manager <= 0.7.22 - Unauthenticated Stored Cross-Site Scripting (XSS)
2015-08-0400:00:00
ethicalhack3r
10
EPSS
0.002
Percentile
60.9%
The Job Manager WordPress plugin was affected by an Unauthenticated Stored Cross-Site Scripting (XSS) security vulnerability.
Go to the job listings page (/index.php/jobs/apply/), then click on "send through your résumé", add the payload ('"><img src=x onerror=prompt(document.cookie);>) to the email field.
The JavaScript will be executed on the admin job manager -> applications -> view details page.Related
zdt
zdt
WordPress Job Manager Plugin 0.7.22 - Persistent XSS Vulnerability
2015-08-09 00:00:00
cvelist
cvelist
CVE-2015-2321
2015-08-13 14:00:00
packetstorm
packetstorm
WordPress Job Manager 0.7.22 Cross Site Scripting
2015-08-02 00:00:00
prion
prion
Cross site scripting
2015-08-13 14:59:00
nvd
nvd
CVE-2015-2321
2015-08-13 14:59:00
wpvulndb
wpvulndb
Job Manager <= 0.7.22 - Unauthenticated Stored Cross-Site Scripting (XSS)
2015-08-04 00:00:00
exploitdb
exploitdb
WordPress Plugin Job Manager 0.7.22 - Persistent Cross-Site Scripting
2015-08-07 00:00:00
exploitpack
exploitpack
WordPress Plugin Job Manager 0.7.22 - Persistent Cross-Site Scripting
2015-08-07 00:00:00
cve
cve
CVE-2015-2321
2015-08-13 14:59:00