WordPress Plugin Vulnerabilities

Easy Career Opening <= 0.4 - Cross-Site Scripting (XSS)

Description

The last time it was checked the plugin was still affected and had been closed.

Affects Plugins

Plugin icon
easy-career-openings
No known fix

References

CVE
CVE-2014-4523
URL
https://codevigilant.com/disclosure/wp-plugin-easy-career-openings-a3-cross-site-scripting-xss/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Verified
No
WPVDB ID
6cba52ce-e581-4a07-97ef-7fec18f9f460

Timeline

Publicly Published
2014-05-28 (about 12 years ago)
Added
2019-12-27 (about 6 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2024-04-16
Title
Mortgage Calculators WP < 1.60 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2014-09-29
Title
My Calendar 1.10.2 - XSS in PATH_INFO Parameter
Published
2023-11-07
Title
Restrict Categories <= 2.6.4 - Reflected XSS
Published
2024-12-05
Title
Broadcast < 51.02 - Reflected Cross-Site Scripting
Published
2017-06-02
Title
Spiffy Calendar < 3.3.0 - Reflected Cross-Site Scripting (XSS)