cleantalk
Vulnerabilities and Security Researches

WordPress Job Board and Recruitment Plugin – JobWP, CVE-2025-32265

CVE, Research URL

CVE-2025-32265

Home page URL

Security reports for WordPress Job Board and Recruitment Plugin – JobWP

Application

WordPress Job Board and Recruitment Plugin – JobWP

Published on
Apr 04, 2025
Research Description
JobWP &#8211; Job Board, Job Listing, Career Page and Recruitment Plugin [jobwp] <= 2.3.9 (unfixed) CVE-2025-32265 [en] Cross-Site Request Forgery (CSRF) vulnerability in Hossni Mubarak JobWP allows Cross Site Request Forgery. This issue affects JobWP: from n/a through 2.3.9.
Affected versions
Min -, max 2.3.9.
Status
vulnerable
Previous vulnerability researches
Lexicata (CVE-2024-12069) , Feb 21, 2025
Lexicata (CVE-2025-31900) , Apr 05, 2025
New vulnerability
Advanced All in One Admin Search by WP Spotlight (CVE-2025-32261) , Apr 06, 2025
Free Booking Plugin for Hotels, Restaurant and Car Rental &#8211; eaSYNC (CVE-2025-32219) , Apr 06, 2025
Salon booking system (CVE-2025-32220) , Apr 06, 2025
1 Click WordPress Migration Plugin &#8211; 100% FREE for a limited time (CVE-2025-32257) , Apr 06, 2025
Sparkle Elementor Kit (CVE-2025-32157) , Apr 06, 2025