Vulnerability Details CVE-2023-5906
The Job Manager & Career WordPress plugin before 1.4.4 contains a vulnerability in the Directory Listings system, which allows an unauthorized user to view and download private files of other users. This vulnerability poses a serious security threat because it allows an attacker to gain access to confidential data and files of other users without their permission.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.5%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2023-5906
-
cpe:2.3:a:themehigh:job_manager_&_career:1.0.0
-
cpe:2.3:a:themehigh:job_manager_&_career:1.0.1
-
cpe:2.3:a:themehigh:job_manager_&_career:1.0.2
-
cpe:2.3:a:themehigh:job_manager_&_career:1.1.0
-
cpe:2.3:a:themehigh:job_manager_&_career:1.1.1
-
cpe:2.3:a:themehigh:job_manager_&_career:1.2.0
-
cpe:2.3:a:themehigh:job_manager_&_career:1.2.1
-
cpe:2.3:a:themehigh:job_manager_&_career:1.2.2
-
cpe:2.3:a:themehigh:job_manager_&_career:1.2.3
-
cpe:2.3:a:themehigh:job_manager_&_career:1.2.4
-
cpe:2.3:a:themehigh:job_manager_&_career:1.3.0
-
cpe:2.3:a:themehigh:job_manager_&_career:1.4.0
-
cpe:2.3:a:themehigh:job_manager_&_career:1.4.1
-
cpe:2.3:a:themehigh:job_manager_&_career:1.4.2
-
cpe:2.3:a:themehigh:job_manager_&_career:1.4.3