Have you found a vulnerability in a WordPress plugin or theme? Report vulnerabilities in WordPress plugins and themes through our bug bounty program and earn a bounty on all in-scope submissions, while we handle the responsible disclosure process on your behalf.

Job Board Manager

Wordfence Intelligence > Vulnerability Database > WordPress Plugins > Job Board Manager

Information

Software Type	Plugin
Software Slug	job-board-manager (view on wordpress.org)
Software Status	Active
Software Author	pickplugins
Software Website	www.pickplugins.com
Software Downloads	74,134
Software Active Installs	500
Software Record Last Updated	April 20, 2025

6 Vulnerabilities

Submit a Vulnerability

Job Board Manager <= 2.1.60 - Authenticated (Contributor+) PHP Object Injection

8.8

CVE-2025-32144

Apr 9, 2025

Researcher: LVT-tholv2k

Job Board Manager <= 2.1.60 - Missing Authorization

5.3

CVE-2025-31862

Apr 1, 2025

Researcher: LVT-tholv2k

Job Board Manager <= 2.1.60 - Reflected Cross-Site Scripting

6.1

CVE-2025-22679

Feb 3, 2025

Researcher: 0xd4rk5id3

Job Board Manager <= 2.1.59 - Cross-Site Request Forgery

4.3

CVE-2025-24622

Jan 24, 2025

Researcher: Trương Hữu Phúc (truonghuuphuc)

Job Board Manager <= 2.1.60 - Missing Authorization

5.3

CVE-2024-55993

Dec 14, 2024

Researcher: Kévin Mosbahi (Mika)

Job Board Manager <= 2.1.58 - Authenticated (Subscriber+) Stored Cross-Site Scripting

6.4

CVE-2024-38722

Jul 11, 2024

Researchers: Myungju Kim, younsoung kim, SeoHyeon Lee, SeoHee Kang

Title	Status	CVE ID	CVSS	Researchers	Date
Job Board Manager <= 2.1.60 - Authenticated (Contributor+) PHP Object Injection	Unpatched	CVE-2025-32144	8.8	LVT-tholv2k	April 9, 2025
Job Board Manager <= 2.1.60 - Missing Authorization	Unpatched	CVE-2025-31862	5.3	LVT-tholv2k	April 1, 2025
Job Board Manager <= 2.1.60 - Reflected Cross-Site Scripting	Unpatched	CVE-2025-22679	6.1	0xd4rk5id3	February 3, 2025
Job Board Manager <= 2.1.59 - Cross-Site Request Forgery	Patched	CVE-2025-24622	4.3	Trương Hữu Phúc (truonghuuphuc)	January 24, 2025
Job Board Manager <= 2.1.60 - Missing Authorization	Unpatched	CVE-2024-55993	5.3	Kévin Mosbahi (Mika)	December 14, 2024
Job Board Manager <= 2.1.58 - Authenticated (Subscriber+) Stored Cross-Site Scripting	Patched	CVE-2024-38722	6.4	Myungju Kim, younsoung kim, SeoHyeon Lee, SeoHee Kang	July 11, 2024

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation

Job Board Manager

Information

6 Vulnerabilities

Cookie Options

Strictly Necessary

Performance/Analytical

Targeting