Browse all 5 CVE security advisories affecting WPIndeed. AI-powered Chinese analysis, POCs, and references for each vulnerability.
WPIndeed is a WordPress plugin designed to streamline job board functionality for websites. Historically, it has been associated with multiple critical vulnerabilities including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. These vulnerabilities often stem from insufficient input validation and improper access controls. The plugin currently has five CVEs on record, with some instances allowing unauthenticated attackers to execute arbitrary code or compromise sensitive data. Security researchers have noted recurring patterns in its codebase that leave installations vulnerable, particularly when default configurations remain unchanged. No major public incidents have been widely reported, but the consistent discovery of similar vulnerability types suggests ongoing security challenges for implementations using this plugin.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-22350 | WordPress Indeed Ultimate Learning Pro plugin <= 3.9 - SQL Injection vulnerability — Ultimate Learning ProCWE-89 | 7.6 | High | 2025-01-07 |
| CVE-2020-36833 | Indeed Membership Pro 7.3 - 8.6 - Missing Authorization Checks — Indeed Membership ProCWE-862 | 6.3 | Medium | 2024-10-16 |
| CVE-2020-36832 | Indeed Membership Pro 7.3 - 8.6 - Authentication Bypass — Indeed Membership ProCWE-287 | 9.8 | Critical | 2024-10-16 |
| CVE-2023-26516 | WordPress Debug Assistant Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF) — Debug AssistantCWE-352 | 8.8 | High | 2023-11-12 |
| CVE-2023-26527 | WordPress Debug Assistant Plugin <= 1.4 is vulnerable to Cross Site Scripting (XSS) — Debug AssistantCWE-79 | 5.9 | Medium | 2023-06-16 |
This page lists every published CVE security advisory associated with WPIndeed. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.