Themes Vulnerabilities

CareerUp < 2.3.1 - Unauthenticated Reflected Cross-Site Scripting

Description

There are unauthenticated reflected Cross-Site Scripting (XSS) vulnerabilities in CareerUp theme, via the filter parameters.

Edit (WPScanTeam)
May 27th, 2020 - Vendor Contacted by Original Submitter.
May 29th, 2020 - v2.3.0 Released. Unclear if issue fixed.
June 18th, 2020 - Another submitter (Vlad Vector) reported the same issue. Report escalated to Envato
June 18th, 2020 - v2.3.1 released. Issue confirmed to be fixed.

Proof of Concept

Affects Themes

careerup
Fixed in 2.3.1

References

CVE
CVE-2022-1167
URL
https://themeforest.net/item/careerup-job-board-wordpress-theme/24002090
URL
https://m0ze.ru/vulnerability/[2020-06-17]-[WordPress]-[CWE-79]-CareerUp-WordPress-Theme-v2.3.0.txt

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Original Researcher
Daniel Ruf, Vlad Vector
Submitter
Daniel Ruf
Submitter website
https://daniel-ruf.de
Submitter twitter
DanielRufde
Verified
Yes
WPVDB ID
a30a1430-c474-4cd1-877c-35c4ab624170

Timeline

Publicly Published
2020-07-03 (about 5 years ago)
Added
2020-07-03 (about 5 years ago)
Last Updated
2022-04-08 (about 3 years ago)

Other

Published
Title
Published
2025-12-11
Title
Fancy Product Designer < 6.5.0 - Unauthenticated Stored Cross-Site Scripting via SVG File Upload
Published
2023-01-19
Title
Theme Blvd Responsive Google Maps <= 1.0.2 - Contributor+ XSS
Published
2025-09-22
Title
Append Link on Copy <= 0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2017-06-16
Title
Download Manager <= 2.9.51 - Authenticated Reflected Cross-Site Scripting (XSS)
Published
2022-05-18
Title
Themify - WooCommerce Product Filter < 1.3.8 - Reflected Cross-Site Scripting