cleantalk
Vulnerabilities and Security Researches

WordPress Job Board and Recruitment Plugin – JobWP, CVE-2025-69318

CVE, Research URL

CVE-2025-69318

Home page URL

Security reports for WordPress Job Board and Recruitment Plugin – JobWP

Application

WordPress Job Board and Recruitment Plugin – JobWP

Published on
Jan 22, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Hossni Mubarak JobWP jobwp allows Stored XSS.This issue affects JobWP: from n/a through <= 2.4.5.
Affected versions
max 2.4.5.
Status
vulnerable
Previous vulnerability researches
Page Builder: Pagelayer &#8211; Drag and Drop website builder (CVE-2025-24573) , Jan 26, 2025
Page Builder: Pagelayer &#8211; Drag and Drop website builder (CVE-2025-1926) , Mar 10, 2025
Page Builder: Pagelayer &#8211; Drag and Drop website builder (CVE-2024-13427) , May 25, 2025
Page Builder: Pagelayer &#8211; Drag and Drop website builder (CVE-2025-4223) , May 25, 2025
Page Builder: Pagelayer &#8211; Drag and Drop website builder (CVE-2025-2104) , Mar 14, 2025
New vulnerability
User Registration Using Contact Form 7 (CVE-2025-12825) , Jan 28, 2026
WANotifier &#8211; Send Message Notifications Using Cloud API (CVE-2025-68020) , Jan 28, 2026
Syntax Highlighter Compress (CVE-2025-68859) , Jan 28, 2026
Media Library File Size (CVE-2026-24569) , Jan 28, 2026
Academy LMS – eLearning and online course solution for WordPress (CVE-2025-15521) , Jan 28, 2026