CVE-2023-5906
Published: 27 November 2023
Summary
CVE-2023-5906 is a high-severity an unspecified weakness vulnerability in Themehigh Job Manager \& Career. Its CVSS base score is 7.5 (High).
Operationally, ranked in the top 46.8% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-58179
Vulnerability details
The Job Manager & Career WordPress plugin before 1.4.4 contains a vulnerability in the Directory Listings system, which allows an unauthorized user to view and download private files of other users. This vulnerability poses a serious security threat because it…
more
allows an attacker to gain access to confidential data and files of other users without their permission.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.