CVE-2024-12810
- EPSS 0.1%
- Veröffentlicht 14.03.2025 11:15:51
- Zuletzt bearbeitet 27.03.2025 01:33:31
The JobCareer | Job Board Responsive WordPress Theme theme for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability checks on multiple functions in all versions up to, and including, 7.1. This mak...
CVE-2024-11284
- EPSS 0.24%
- Veröffentlicht 14.03.2025 05:15:40
- Zuletzt bearbeitet 08.07.2025 15:21:52
The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 6.9. This is due to the plugin not properly validating a user's identity prior to updating their password through the...
CVE-2024-11285
- EPSS 0.24%
- Veröffentlicht 14.03.2025 05:15:40
- Zuletzt bearbeitet 08.07.2025 15:20:09
The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 7.1. This is due to the plugin not properly validating a user's identity prior to updating their details like email v...
CVE-2024-11286
- EPSS 0.47%
- Veröffentlicht 14.03.2025 05:15:40
- Zuletzt bearbeitet 08.07.2025 15:17:34
The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.1. This is due to the plugin not properly verifying a user's identity prior to authenticating them through the cs_parse_request() funct...
CVE-2024-11283
- EPSS 0.24%
- Veröffentlicht 14.03.2025 05:15:37
- Zuletzt bearbeitet 08.07.2025 15:25:15
The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.1. This is due to wp_ajax_google_api_login_callback function not properly verifying a user's identity prior to authenticating them. Thi...