This is a summary of the AI-generated 10-question deep analysis. The full version (longer answers, follow-up Q&A, related CVEs) requires login. Read the full analysis β
Q1What is this vulnerability? (Essence + Consequences)
π¨ **Essence**: A flaw in WordPress Job Manager plugin allows **CV filename disclosure**.β¦
π **Root Cause**: The plugin fails to properly restrict access to uploaded files. <br>π **Flaw**: Lack of authorization checks on file retrieval endpoints, allowing enumeration of filenames through brute-force guessing.
Q3Who is affected? (Versions/Components)
π₯ **Affected**: WordPress sites using the **Job Manager** plugin. <br>π **Version**: Versions **0.7.25 and earlier** are vulnerable. Ensure you are not running outdated versions.
Q4What can hackers do? (Privileges/Data)
π΅οΈ **Attacker Action**: Remote attackers can perform **brute-force attacks** to guess filenames.β¦
β‘ **Threshold**: **Low**. <br>π **Auth**: No authentication required. <br>βοΈ **Config**: Exploitation relies on brute-forcing filenames, which is feasible given common naming conventions or predictable patterns.
Q6Is there a public Exp? (PoC/Wild Exploitation)
π» **Exploit**: **Yes**, public exploits exist. <br>π **PoC**: Multiple GitHub repositories (e.g., G01d3nW01f, crypticdante) host scripts specifically for this CVE. Wild exploitation is possible.
Q7How to self-check? (Features/Scanning)
π **Self-Check**: Scan for the Job Manager plugin version. <br>π οΈ **Tooling**: Use the provided PoC scripts to test if CV files are accessible via brute-force URL guessing.β¦
π₯ **Urgency**: **High**. <br>β° **Priority**: Immediate action required. Since PoCs are public and no auth is needed, automated attacks are likely. Protect sensitive applicant data now!