CVE-2024-12810
- EPSS 0.09%
- Published 14.03.2025 11:15:51
- Last modified 27.03.2025 01:33:31
The JobCareer | Job Board Responsive WordPress Theme theme for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability checks on multiple functions in all versions up to, and including, 7.1. This mak...
CVE-2024-11284
- EPSS 0.21%
- Published 14.03.2025 05:15:40
- Last modified 08.07.2025 15:21:52
The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 6.9. This is due to the plugin not properly validating a user's identity prior to updating their password through the...
CVE-2024-11285
- EPSS 0.21%
- Published 14.03.2025 05:15:40
- Last modified 08.07.2025 15:20:09
The WP JobHunt plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 7.1. This is due to the plugin not properly validating a user's identity prior to updating their details like email v...
CVE-2024-11286
- EPSS 0.41%
- Published 14.03.2025 05:15:40
- Last modified 08.07.2025 15:17:34
The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.1. This is due to the plugin not properly verifying a user's identity prior to authenticating them through the cs_parse_request() funct...
CVE-2024-11283
- EPSS 0.21%
- Published 14.03.2025 05:15:37
- Last modified 08.07.2025 15:25:15
The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.1. This is due to wp_ajax_google_api_login_callback function not properly verifying a user's identity prior to authenticating them. Thi...