Vulnerabilities > Sfwebservice

DATE CVE VULNERABILITY TITLE RISK
2025-03-07 CVE-2025-1315 Authentication Bypass Using an Alternate Path or Channel vulnerability in Sfwebservice Injob
The InWave Jobs plugin for WordPress is vulnerable to privilege escalation via password reset in all versions up to, and including, 3.5.1.
network
low complexity
sfwebservice CWE-288
critical
 9.8
9.8