Primary

Context

WP Job Portal Missing Authorization Vulnerability Allowing Insecure Direct Object References

Vulnerability

Patched

A missing authorization vulnerability has been identified in the WP Job Portal WordPress plugin, specifically in versions through 2.3.2. This vulnerability allows for insecure direct object references (IDOR), enabling unauthorized access to sensitive data or files by exploiting incorrectly configured access control levels.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive files or data, allowing for manipulation or interaction with the database.

Remediation

Users of the WP Job Portal WordPress plugin should update to version 2.3.3 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.6

impact

5.0

exploitability

6.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.6

impact

5.0

exploitability

6.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WP Job Portal Missing Authorization Vulnerability Allowing Insecure Direct Object References

Vulnerability

Impact

Remediation

Affected Products

WP Job Portal

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating