Vulnerabilities > CVE-2023-29384 - Unspecified vulnerability in Hmplugin Jobwp

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

hmplugin

critical

NVD

Published: 2023-12-20

Updated: 2024-11-21

Summary

Unrestricted Upload of File with Dangerous Type vulnerability in HM Plugin WordPress Job Board and Recruitment Plugin – JobWP.This issue affects WordPress Job Board and Recruitment Plugin – JobWP: from n/a through 2.0.

Vulnerable Configurations

Part	Description	Count
Application	Hmplugin Hmplugin Jobwp 1.0 Hmplugin Jobwp 1.1 Hmplugin Jobwp 1.2 Hmplugin Jobwp 1.3 Hmplugin Jobwp 1.4 Hmplugin Jobwp 1.5 Hmplugin Jobwp 1.6 Hmplugin Jobwp 1.7 Hmplugin Jobwp 1.8 Hmplugin Jobwp 2.0	10

References

https://patchstack.com/database/vulnerability/jobwp/wordpress-job-board-and-recruitment-plugin-jobwp-plugin-2-0-arbitrary-file-upload-vulnerability?_s_id=cve
https://patchstack.com/database/vulnerability/jobwp/wordpress-job-board-and-recruitment-plugin-jobwp-plugin-2-0-arbitrary-file-upload-vulnerability?_s_id=cve