Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Blueglass Subscribe
Filtered by product Jobs For Wordpress
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-10104 1 Blueglass 1 Jobs For Wordpress 2025-04-11 N/A N/A
The Jobs for WordPress plugin before 2.7.8 does not sanitise and escape some of its Job settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks
CVE-2024-10105 1 Blueglass 1 Jobs For Wordpress 2025-04-02 N/A N/A
The Job Postings WordPress plugin before 2.7.11 does not sanitise and escape some of its settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
CVE-2024-0820 1 Blueglass 1 Jobs For Wordpress 2025-03-28 N/A 5.4 MEDIUM
The Jobs for WordPress plugin before 2.7.4 does not sanitise and escape some parameters, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks
CVE-2023-26017 1 Blueglass 1 Jobs For Wordpress 2023-05-08 N/A 4.8 MEDIUM
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in BlueGlass Jobs for WordPress plugin <= 2.5.10.2 versions.
CVE-2022-44743 1 Blueglass 1 Jobs For Wordpress 2023-04-28 N/A 5.4 MEDIUM
Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in BlueGlass Jobs for WordPress plugin <= 2.5.11.2 versions.