CVE-2024-12213

Critical CVSS: 9.8

The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.2.76. This is due to the plugin allowing a user to supply the 'role' field when registering. This makes it possible for unauthenticated attackers to register as an administrator on vulnerable sites.

Vendor

Apusthemes

Product

Superio

CWE

CWE-266

Yayın Tarihi

2025-02-12 10:15:08

Güncelleme

2025-02-20 16:08:26

Source Identifier

security@wordfence.com

KEV Date Added

Kategoriler

CWE-266 Superio CRITICAL Apusthemes 2025

Referanslar

https://themeforest.net/item/superio-job-board-wordpress-theme/32180231 https://www.wordfence.com/threat-intel/vulnerabilities/id/7cdfce88-b6c2-4820-9d6f-446f61b9b596?source=cve