JobMonster < 4.5.2.9 – Unauthenticated Reflected Cross-Site Scripting | CVE 2022-1170

Description

In the theme JobMonster there is a XSS vulnerability as the input for the search form is provided through unsanitized GET requests.

Note (WPScanTeam): It's unclear which exact version fixed the issue, but the lowest we were able to test and confirm remediation was 4.5.2.9.

Proof of Concept

https://example.com/resumes/?s=%22%3E%3Cimg+src%3Dx+onerror%3Dalert(1)%3E

Affects Themes

noo-jobmonster

Fixed in 4.5.2.9

References

CVE

CVE-2022-1170

URL

https://themeforest.net/item/jobmonster-job-board-wordpress-theme/10965446

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

6.1 (medium)

Miscellaneous

Original Researcher

Daniel Ruf

Submitter

Daniel Ruf

Submitter website

https://daniel-ruf.de

Submitter twitter

DanielRufde

Verified

Yes

WPVDB ID

2ecb18e6-b575-4a20-bd31-94d24f1d1efc

Timeline

Publicly Published

2019-10-24 (about 4 years ago)

Added

2020-07-10 (about 3 years ago)

Last Updated

2022-04-09 (about 2 years ago)

Other

Published

Title

Published

2016-04-21

Title

Google SEO Pressor Snippet <= 1.2.6 - Reflected Cross-Site Scripting (XSS)

Published

2021-03-17

Title

Elementor < 3.1.4 - Authenticated Stored Cross-Site Scripting (XSS) in Icon Box Widget

Published

2022-05-11

Title

WooCommerce Green Wallet Gateway < 1.0.2 - Reflected Cross Site Scripting in checkout page

Published

2020-09-21

Title

15Zine < 3.3.0 - Reflected Cross-Site Scripting

Published

2023-06-02

Title

Online Booking & Scheduling Calendar for WordPress by vcita < 4.3.1 - Unauthenticated Stored Cross-Site Scripting