WordPress Plugin Vulnerabilities

WP Job Manager < 1.26.2 - Unauthenticated Arbitrary File Upload

Description

The WP Job Manager WordPress plugin was affected by an Unauthenticated Arbitrary File Upload security vulnerability.

Affects Plugins

Plugin icon
wp-job-manager
Fixed in 1.26.2

References

URL
https://packetstormsecurity.com/files/#137866/
URL
https://www.pluginvulnerabilities.com/2017/07/13/image-upload-capability-in-wordpress-plugin-being-abused/
URL
https://wordpress.org/support/topic/wp-job-manager-1-26-2-released/

Miscellaneous

Submitter
Nitant Soni
Verified
No
WPVDB ID
3d653568-3159-46eb-9dc7-d51af09e8f1d

Timeline

Publicly Published
2016-07-11 (about 9 years ago)
Added
2017-09-25 (about 8 years ago)
Last Updated
2021-09-21 (about 4 years ago)

Other

Published
Title
Published
2025-01-20
Title
Post/Page Copying Tool to Export and Import post/page for Cross site Migration < 2.0.4 - Authenticated (Contributor+) Arbitrary File Upload
Published
2024-10-29
Title
FileOrganizer < 1.1.0 - Authenticated (Subscriber+) Arbitrary File Upload
Published
2024-08-02
Title
YayExtra – WooCommerce Extra Product Options < 1.3.8 - Unauthenticated Arbitrary File Upload via handle_upload_file Function
Published
2014-08-01
Title
Smart Slideshow - upload.php Multiple File Extension Upload Arbitrary Code Execution
Published
2024-10-25
Title
Ajar in5 Embed < 3.1.4 - Unauthenticated Arbitrary File Upload