{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-7781", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-07-17T23:20:30.661Z", "datePublished": "2025-10-10T11:17:07.402Z", "dateUpdated": "2026-04-08T16:35:25.241Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:35:25.241Z"}, "affected": [{"vendor": "n/a", "product": "WP JobHunt", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "7.6", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Stored Cross-Site Scripting via the \u2018cs_job_title\u2019 parameter in all versions up to, and including, 7.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "title": "WP JobHunt <= 7.6 - Authenticated (Candidate+) Stored Cross-Site Scripting via \u2018cs_job_title\u2019", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/0e3575f8-7adc-4546-9f78-bcb2cf3caa2a?source=cve"}, {"url": "https://themeforest.net/item/jobcareer-job-board-responsive-wordpress-theme/14221636"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "baseScore": 6.4, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "meghnine islem"}], "timeline": [{"time": "2025-10-09T00:00:00.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-10-10T12:24:18.985483Z", "id": "CVE-2025-7781", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-10T12:24:28.290Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-7781", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-10-10T12:24:18.985483Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-10T12:24:24.975Z"}}], "cna": {"title": "WP JobHunt <= 7.6 - Authenticated (Candidate+) Stored Cross-Site Scripting via \u2018cs_job_title\u2019", "credits": [{"lang": "en", "type": "finder", "value": "meghnine islem"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "n/a", "product": "WP JobHunt", "versions": [{"status": "affected", "version": "*", "versionType": "semver", "lessThanOrEqual": "7.6"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-10-09T00:00:00.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/0e3575f8-7adc-4546-9f78-bcb2cf3caa2a?source=cve"}, {"url": "https://themeforest.net/item/jobcareer-job-board-responsive-wordpress-theme/14221636"}], "descriptions": [{"lang": "en", "value": "The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Stored Cross-Site Scripting via the \u2018cs_job_title\u2019 parameter in all versions up to, and including, 7.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2025-10-10T11:17:07.402Z"}}}, "cveMetadata": {"cveId": "CVE-2025-7781", "state": "PUBLISHED", "dateUpdated": "2025-10-10T12:24:28.290Z", "dateReserved": "2025-07-17T23:20:30.661Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-10-10T11:17:07.402Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Stored Cross-Site Scripting via the \u2018cs_job_title\u2019 parameter in all versions up to, and including, 7.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "id": "CVE-2025-7781", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-10-10T12:15:38.127", "references": [{"source": "security@wordfence.com", "url": "https://themeforest.net/item/jobcareer-job-board-responsive-wordpress-theme/14221636"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/0e3575f8-7adc-4546-9f78-bcb2cf3caa2a?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-22T16:51:16.560824+00:00", "value": {"mitigation_remediation": ["Upgrade the WP JobHunt plugin to a version newer than 7.6, which resolves the input sanitization issue.", "Limit the Candidate role\u2019s capabilities so that users with only Candidate access cannot edit job titles or other plugin fields that accept the cs_job_title parameter.", "Apply a content\u2011security\u2011policy or use an input\u2011sanitization plugin to strip or encode disallowed tags from the cs_job_title field as a temporary workaround until the plugin is updated."], "summary": {"action": "Apply Update", "impact": "Stored Cross\u2011Site Scripting"}, "threat_synthesis": {"affected_systems": "All installations of the WP JobHunt plugin with a version number of 7.6 or lower, including deployments of the JobCareer theme that embed this plugin.", "description_and_impact": "The WP JobHunt plugin allows an authenticated user with Candidate-level or higher permissions to place arbitrary scripts into the job title field, which is subsequently displayed without proper sanitization or escaping. This stored cross\u2011site scripting flaw permits the execution of user\u2011controlled code in the browsers of anyone who views the affected job listing, potentially exposing credentials, session data, or other sensitive information to the attacker.", "risk_and_exploitability": "The vulnerability carries a CVSS score of 6.4, indicating a moderate severity, and has an EPSS score of less than 1\u202f%, suggesting that exploitation is currently uncommon. It is not present in the CISA KEV catalog. Exploitation requires the attacker to be authenticated as a Candidate or higher, but once a script is injected it will run for all visitors to the page, giving an attacker the ability to steal session cookies, perform phishing, or compromise the site. The modest EPSS score does not eliminate risk, especially for sites that rely on the plugin and have broad Candidate access."}}}}, "created": "2025-10-21T13:14:13.259351+00:00", "updated": "2026-04-22T17:00:12.324394+00:00", "vendors": ["wordpress", "wordpress$PRODUCT$wordpress", "wordpress$PRODUCT$wordpress_mu", "wp-jobhunt_project", "wp-jobhunt_project$PRODUCT$wp-jobhunt"]}