WordPress Plugin Vulnerabilities

WP JobHunt <= 7.1 - Authentication Bypass

Description

The plugin is vulnerable to authentication bypass due to the plugin not properly verifying a user's identity prior to authenticating them through the cs_parse_request() function. This makes it possible for unauthenticated attackers to to log in to any user's account, including administrators.

Affects Plugins

Plugin icon
wp-jobhunt
No known fix

References

CVE
CVE-2024-11286
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/91754c4d-a0d0-4d35-a70a-446d2bdf6c73

Classification

Type
AUTHBYPASS
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-287
CVSS
9.8 (critical)

Miscellaneous

Original Researcher
Tonn
Verified
No
WPVDB ID
743fb819-021b-4b6a-9150-7c64ce9ed34d

Timeline

Publicly Published
2025-03-13 (about 1 year ago)
Added
2025-03-14 (about 1 year ago)
Last Updated
2025-03-14 (about 1 year ago)

Other

Published
Title
Published
2025-11-18
Title
YITH WooCommerce Wishlist < 4.10.1 - Wishlist Item Deletion via Wishlist Token Disclosure
Published
2025-04-03
Title
Booking Calendar and Notification <= 4.0.3 - Authentication Bypass
Published
2024-10-15
Title
UltimateAI <= 2.8.3 - Limited User Password Reset
Published
2026-03-02
Title
All-in-One Microsoft 365 & Entra ID / Azure AD SSO Login < 2.2.6 - Authentication Bypass
Published
2023-12-15
Title
Getwid < 2.0.3 - Unauthenticated Arbitrary Email Sending to Admin