JobSearch WP Job Board

Information

Software Type Plugin
Software Slug wp-jobsearch
Software Status Active
Software Author https://codecanyon.net/item/jobsearch-wp-job-board-wordpress-plugin/21066856
Software Website codecanyon.net
Software Record Last Updated September 20, 2024

Showing 1-20 of 23 Vulnerabilities

6.4
CVE ID Unknown
Jul 3, 2020
Researcher: RE-ALTER
6.4
CVE ID Unknown
Jul 3, 2020
Researcher: RE-ALTER
Title Status CVE ID CVSS Researchers Date
WP JobSearch <= 2.6.7 - Authentication Bypass to Account Takeover and Privilege Escalation Patched CVE-2024-11925 9.8 Tonn November 27, 2024
WP JobSearch <= 2.6.7 - Authenticated (Subscriber+) Arbitrary File Upload Patched CVE-2024-8614 9.9 Tonn November 5, 2024
WP JobSearch <= 2.6.7 - Unauthenticated Arbitrary File Upload Patched CVE-2024-8615 10.0 Tonn November 5, 2024
JobSearch <= 2.5.9 - Reflected Cross-Site Scripting Patched CVE-2024-47394 6.1 Bonds September 30, 2024
JobSearch <= 2.5.9 - Unauthenticated PHP Object Injection Patched CVE-2024-47636 9.8 Bonds September 30, 2024
JobSearch <= 2.5.4 - Missing Authorization Patched CVE-2024-43928 4.3 Ananda Dhakal August 26, 2024
JobSearch <= 2.5.4 - Missing Authorization Patched CVE-2024-43929 5.3 Ananda Dhakal August 26, 2024
JobSearch <= 2.5.3 - Cross-Site Request Forgery Patched CVE-2024-43930 4.3 Ananda Dhakal August 26, 2024
JobSearch <= 2.5.3 - Unauthenticated PHP Object Injection Patched CVE-2024-43931 10.0 Ananda Dhakal August 26, 2024
JobSearch <= 2.3.4 - Authentication Bypass to Account Takeover Unpatched CVE-2024-43245 9.8 Dave Jong August 12, 2024
WP JobSearch <= 2.3.3 - Authentication Bypass Patched CVE-2023-6584 9.8 Marc-Alexandre Montpas November 24, 2023
WP JobSearch <= 2.3.3 - Unauthenticated Arbitrary File Upload Patched CVE-2023-6585 9.8 Furkan Gedik November 24, 2023
JobSearch WP Job Board < = 1.8.1 - Missing Authorization on jobsearch_update_job_import_schedule_call() function Patched CVE-2021-4364 4.3 Jerome Bruandet October 5, 2021
JobSearch WP Job Board <= 1.8.1 - Missing Authorization to Arbitrary Options Update Patched CVE-2021-4361 8.8 Jerome Bruandet October 5, 2021
JobSearch WP Job Board <= 1.8.1 - Missing Authorization to Settings Change Patched CVE-2021-4352 5.3 Jerome Bruandet October 5, 2021
JobSearch WP Job Board <= 1.5.5 - Reflected Cross-Site Scripting Patched 6.1 RE-ALTER July 24, 2020
JobSearch WP Job Board < 1.5.5 - Reflected Cross-Site Scripting Patched 6.1 RE-ALTER July 18, 2020
JobSearch WP Job Board <= 1.5.1 - Stored Cross-Site Scripting Patched 6.4 RE-ALTER July 3, 2020
JobSearch WP Job Board <= 1.5.1 - Stored Cross-Site Scripting Patched 6.4 RE-ALTER July 3, 2020
JobSearch WP Job Board <= 1.5.2 - Authenticated Stored Cross-Site Scripting Patched 6.4 RE-ALTER July 3, 2020

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation