Wpjobportal

Wp Job Portal

28 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2024-13371

  • EPSS 0.17%
  • Veröffentlicht 01.02.2025 08:15:08
  • Zuletzt bearbeitet 05.02.2025 16:16:22

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to unauthorized arbitrary emails sending due to a missing capability check on the sendEmailToJobSeeker() function in all versions up...

4.3

CVE-2024-12131

  • EPSS 0.06%
  • Veröffentlicht 07.01.2025 13:15:06
  • Zuletzt bearbeitet 05.02.2025 19:34:09

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.5 due to missing validation on a user controlled key. ...

4.3

CVE-2024-12132

  • EPSS 0.46%
  • Veröffentlicht 03.01.2025 09:15:05
  • Zuletzt bearbeitet 05.02.2025 19:37:43

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.2.4 due to missing validation on a user controlled key. ...

9.8

CVE-2024-11715

  • EPSS 0.33%
  • Veröffentlicht 14.12.2024 07:15:06
  • Zuletzt bearbeitet 06.02.2025 13:38:51

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the assignUserRole() function in all versions up to, and including, 2.2....

4.9

CVE-2024-11714

  • EPSS 0.29%
  • Veröffentlicht 14.12.2024 07:15:06
  • Zuletzt bearbeitet 06.02.2025 13:59:47

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'ff' parameter of the getFieldsForVisibleCombobox() function in all versions up to, and including, 2.2.2 du...

4.9

CVE-2024-11713

  • EPSS 0.29%
  • Veröffentlicht 14.12.2024 07:15:06
  • Zuletzt bearbeitet 06.02.2025 14:01:08

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'page_id' parameter of the wpjobportal_deactivate() function in all versions up to, and including, 2.2.2 du...

5.3

CVE-2024-11712

  • EPSS 0.24%
  • Veröffentlicht 14.12.2024 07:15:06
  • Zuletzt bearbeitet 05.02.2025 15:17:40

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the getResumeFileDownloadById() function in all versions up to, ...

7.5

CVE-2024-11711

  • EPSS 1.7%
  • Veröffentlicht 14.12.2024 07:15:06
  • Zuletzt bearbeitet 05.02.2025 15:30:28

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'resumeid' parameter in all versions up to, and including, 2.2.1 due to insufficient escaping on the user s...

4.9

CVE-2024-11710

  • EPSS 0.27%
  • Veröffentlicht 14.12.2024 07:15:04
  • Zuletzt bearbeitet 05.02.2025 15:21:02

The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to SQL Injection via the 'fieldfor', 'visibleParent' and 'id' parameters in all versions up to, and including, 2.2.2 due to insuffic...

5.4

CVE-2024-52389

  • EPSS 0.06%
  • Veröffentlicht 18.11.2024 22:15:08
  • Zuletzt bearbeitet 05.02.2025 15:28:15

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Job Portal allows Stored XSS.This issue affects WP Job Portal: from n/a through 2.2.0.