Themes Vulnerabilities

Careerfy < 4.1.0 - Multiple Cross-Site Scripting (XSS) Issues

Description

An Unauthenticated Reflected & Multiple Authenticated Persistent XSS vulnerabilities was discovered in the Careerfy Job Board theme through 3.9.0 and 4.0.0 for WordPress.

Authenticated Persistent XSS on the Candidate and Employer Profile pages.

An Authenticated Persistent XSS @ Job Page will trigger on the dashboard area /user-dashboard/?tab=manage-jobs and on the job page itself.

Proof of Concept

Affects Themes

careerfy
Fixed in 4.1.0

References

URL
https://themeforest.net/item/careerfy-job-board-wordpress-theme/21137053
URL
https://github.com/vladvector/vladvector.github.io/blob/master/exploit/2020-07-01-careerfy-job-board-wordpress-theme-v3-9-0.txt
URL
https://github.com/vladvector/vladvector.github.io/blob/master/exploit/2020-07-05-careerfy-job-board-wordpress-theme-v4-0-0.txt

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Original Researcher
Vlad Vector
Submitter
VLΛD VΞCTOR
Submitter website
https://vladvector.ru
Submitter twitter
vlad_vector
Verified
No
WPVDB ID
1b8ef5ab-58fe-4ef2-b930-f17488f3e6ce

Timeline

Publicly Published
2020-07-05 (about 5 years ago)
Added
2020-07-05 (about 5 years ago)
Last Updated
2020-07-08 (about 5 years ago)

Other

Published
Title
Published
2024-04-22
Title
Coupon & Discount Code Reveal Button < 1.2.6 - Authenticated (Editor+) Stored Cross-Site Scripting
Published
2025-01-16
Title
GeoDigs <= 3.4.1 - Reflected Cross-Site Scripting
Published
2024-04-05
Title
Essential Blocks for Gutenberg < 4.5.4 - Contributor+ Stored Cross-Site Scripting
Published
2022-12-16
Title
iPages Flipbook For WordPress < 1.4.7 - Contributor+ Stored XSS
Published
2019-12-13
Title
WordPress <= 5.3 - Authenticated Stored XSS via Block Editor Content