cleantalk
Vulnerabilities and Security Researches

WordPress Job Board and Recruitment Plugin – JobWP, CVE-2025-49975

CVE, Research URL

CVE-2025-49975

Home page URL

Security reports for WordPress Job Board and Recruitment Plugin – JobWP

Application

WordPress Job Board and Recruitment Plugin – JobWP

Published on
Jun 20, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Hossni Mubarak JobWP allows Cross Site Request Forgery. This issue affects JobWP: from n/a through 2.4.0.
Affected versions
Min -, max 2.4.1.
Status
vulnerable
Previous vulnerability researches
Disable Bloat for WordPress & WooCommerce (da056b4785dd3a16c372e107c4df80bdedde5b0c) , Jun 07, 2024
New vulnerability
Image Sizes Controller, Create Custom Image Sizes, Disable Image Sizes (CVE-2025-49973) , Jun 30, 2025
Post Carousel Slider for Elementor (CVE-2025-3863) , Jun 30, 2025
WP User Stylesheet Switcher (CVE-2025-52792) , Jun 30, 2025
Easy FancyBox – WordPress Lightbox Plugin (CVE-2025-52707) , Jun 30, 2025
CRM ERP Business Solution | freelancers & SME | for WordPress & WooCommerce (CVE-2025-49987) , Jun 30, 2025