cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forwp-job-manager wp-job-manager

Direction: ascending
Jun 07, 2024

WP Job Manager # JVNDB-2017-000139

CVE, Research URL

JVNDB-2017-000139

Home page URL

Security reports for WP Job Manager

Application

WP Job Manager

Date
Jun 15, 2017
Research Description
WP Job Manager [wp-job-manager] < 2.1.0 WordPress plugin "WP Job Manager" fails to restrict access permissions The WordPress plugin "WP Job Manager" provided by Automattic Inc. fails to restrict access permissions. Katsunori Kumagai of Kumasan, LLC. reported this issue to IPA under Information Security Early Warning Partnership. Solution: [Update the plugin] According to developer, the update prevents uploading files from unauthenticated users.
Affected versions
max 2.1.0.
Status
vulnerable

WP Job Manager # CVE-2023-52211

CVE, Research URL

CVE-2023-52211

Home page URL

Security reports for WP Job Manager

Application

WP Job Manager

Date
Apr 12, 2024
Research Description
Missing Authorization vulnerability in Automattic WP Job Manager.This issue affects WP Job Manager: from n/a through 2.0.0.
Affected versions
max 2.1.0.
Status
vulnerable

WP Job Manager # CVE-2024-34549

CVE, Research URL

CVE-2024-34549

Home page URL

Security reports for WP Job Manager

Application

WP Job Manager

Date
May 14, 2024
Research Description
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Automattic WP Job Manager.This issue affects WP Job Manager: from n/a through 2.2.2.
Affected versions
max 2.3.0.
Status
vulnerable
Jun 10, 2024

WP Job Manager # CVE-2023-52212

CVE, Research URL

CVE-2023-52212

Home page URL

Security reports for WP Job Manager

Application

WP Job Manager

Date
Jan 05, 2026
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Automattic WP Job Manager allows Cross Site Request Forgery.This issue affects WP Job Manager: from n/a through 2.0.0.
Affected versions
max 2.1.0.
Status
vulnerable
Feb 27, 2026

WP Job Manager # CVE-2026-25404

CVE, Research URL

CVE-2026-25404

Home page URL

Security reports for WP Job Manager

Application

WP Job Manager

Date
Feb 19, 2026
Research Description
Missing Authorization vulnerability in Automattic WP Job Manager wp-job-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Manager: from n/a through <= 2.4.0.
Affected versions
max 2.4.0.
Status
vulnerable