cleantalk
Vulnerabilities and Security Researches

WordPress Job Board and Recruitment Plugin – JobWP, d3132dc76d8786c1409d32f3771c3624f40c9f5c

CVE, Research URL

d3132dc76d8786c1409d32f3771c3624f40c9f5c

Home page URL

Security reports for WordPress Job Board and Recruitment Plugin – JobWP

Application

WordPress Job Board and Recruitment Plugin – JobWP

Published on
Jul 26, 2023
Research Description
WordPress Job Board and Recruitment Plugin &#8211; JobWP [jobwp] < 2.0 WordPress WordPress Job Board and Recruitment Plugin – JobWP Plugin < 2.0 is vulnerable to Cross Site Scripting (XSS) Update the plugin to the latest version. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress WordPress Job Board and Recruitment Plugin – JobWP Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 2.0.
Affected versions
Min -, max 2.0.
Status
vulnerable
Previous vulnerability researches
WordPress Job Board and Recruitment Plugin &#8211; JobWP (CVE-2023-48288) , Jun 07, 2024
WordPress Job Board and Recruitment Plugin &#8211; JobWP (d3132dc76d8786c1409d32f3771c3624f40c9f5c) , Jun 07, 2024
WordPress Job Board and Recruitment Plugin &#8211; JobWP (CVE-2023-29384) , Jun 07, 2024
WordPress Job Board and Recruitment Plugin &#8211; JobWP (CVE-2025-32265) , Apr 06, 2025
New vulnerability
PropertyHive (CVE-2025-39577) , Apr 18, 2025
WP-BusinessDirectory &#8211; Business directory plugin for WordPress (CVE-2025-32630) , Apr 18, 2025
WordPress WP-Advanced-Search (CVE-2025-39538) , Apr 18, 2025
Most And Least Read Posts Widget (CVE-2025-39549) , Apr 18, 2025
Forminator &#8211; Contact Form, Payment Form &amp; Custom Form Builder (CVE-2025-3487) , Apr 18, 2025