浏览 31+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-4758 | WP Job Portal <= 2.4.9 - Authenticated (Subscriber+) Arbitrary File Deletion via Resume Custom File Field | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | High | 8.8 | 2026-03-25 23:26:02 | Deep Dive |
| CVE-2026-4306 | WP Job Portal <= 2.4.8 - Unauthenticated SQL Injection via 'radius' Parameter | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | High | 7.5 | 2026-03-23 22:25:40 | Deep Dive |
| CVE-2026-24941 | WordPress WP Job Portal plugin <= 2.4.4 - Broken Access Control vulnerability | wpjobportal | WP Job Portal | - | - | 2026-02-20 15:47:07 | Deep Dive |
| CVE-2026-24379 | WordPress WP Job Portal plugin <= 2.4.3 - Insecure Direct Object References (IDOR) vulnerability | wpjobportal | WP Job Portal | Medium | 6.5 | 2026-01-22 16:52:46 | Deep Dive |
| CVE-2025-14467 | WP Job Portal <= 2.4.4 - Authenticated (Editor+) Stored Cross-Site Scripting via Job Description Field | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 4.4 | 2025-12-12 03:20:39 | Deep Dive |
| CVE-2025-14293 | WP Job Portal <= 2.4.0 - Authenticated (Subscriber+) Arbitrary File Read | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 6.5 | 2025-12-11 20:22:09 | Deep Dive |
| CVE-2025-48274 | WordPress WP Job Portal plugin <= 2.3.2 - SQL Injection Vulnerability | wpjobportal | WP Job Portal | Critical | 9.3 | 2025-06-17 15:01:31 | Deep Dive |
| CVE-2025-47438 | WordPress WP Job Portal plugin <= 2.3.1 - Local File Inclusion vulnerability | wpjobportal | WP Job Portal | - | - | 2025-05-23 12:43:37 | Deep Dive |
| CVE-2025-48273 | WordPress WP Job Portal plugin <= 2.3.2 - Arbitrary File Download Vulnerability | wpjobportal | WP Job Portal | High | 7.5 | 2025-05-23 12:43:16 | Deep Dive |
| CVE-2025-48272 | WordPress WP Job Portal plugin <= 2.3.2 - Insecure Direct Object References (IDOR) Vulnerability | wpjobportal | WP Job Portal | Medium | 5.3 | 2025-05-19 14:45:25 | Deep Dive |
| CVE-2025-26935 | WordPress WP Job Portal plugin <= 2.2.8 - Local File Inclusion vulnerability | wpjobportal | WP Job Portal | High | 7.5 | 2025-02-25 14:17:55 | Deep Dive |
| CVE-2024-13873 | WP Job Portal <= 2.2.8 - Insecure Direct Object Reference to Authenticated (Subscriber+) User Photo Disconnection | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 4.3 | 2025-02-22 03:20:59 | Deep Dive |
| CVE-2024-13371 | WP Job Portal <= 2.2.6 - Missing Authorization to Unauthenticated Arbitrary Email Sending | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 5.3 | 2025-02-01 07:21:40 | Deep Dive |
| CVE-2024-13372 | WP Job Portal <= 2.2.6 - Insecure Direct Object Reference to Unauthenticated Arbitrary Resume Download | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 5.3 | 2025-02-01 07:21:40 | Deep Dive |
| CVE-2024-13425 | WP Job Portal <= 2.2.6 - Insecure Direct Object Reference to Authenticated (Employer+) Arbitrary Company Deletion | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 4.3 | 2025-02-01 07:21:39 | Deep Dive |
| CVE-2024-13428 | WP Job Portal <= 2.2.6 - Insecure Direct Object Reference to Unauthenticated Company Logo Deletion | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 5.3 | 2025-02-01 07:21:39 | Deep Dive |
| CVE-2024-13429 | WP Job Portal <= 2.2.6 - Insecure Direct Object Reference to Authenticated (Employer+) Arbitrary Job Deletion | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 4.3 | 2025-02-01 07:21:38 | Deep Dive |
| CVE-2024-12131 | WP Job Portal – A Complete Recruitment System for Company or Job Board website <= 2.2.5- Authenticated (Subscriber+) Insecure Direct Object Reference | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 4.3 | 2025-01-07 12:43:41 | Deep Dive |
| CVE-2024-12132 | WP Job Portal – A Complete Recruitment System for Company or Job Board website <= 2.2.4 - Authenticated (Subscriber+) Insecure Direct Object Reference | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 4.3 | 2025-01-03 08:22:21 | Deep Dive |
| CVE-2024-11712 | WP Job Portal <= 2.2.2 - Missing Authorization to Unauthenticated Arbitrary Resume Download | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 5.3 | 2024-12-14 06:45:17 | Deep Dive |