N/A Unfixed
2026-04-08≤ 2.4.1
CVE-2026-39660
WP Job Manager
Minimum safe version
2.4.1
Update to 2.4.1 or later to address 15 fixable vulnerabilities
Latest available2.4.1 ✓⚠ 1 vulnerability has no fix
Medium 5.3
2026-02-19< 2.4.1
CVE-2026-25404
Medium 5.3
2024-05-09< 2.3.0
CVE-2024-34549
Medium 5.3
2024-04-12< 2.1.0
CVE-2023-52211
Medium 5.4
2026-01-05< 2.1.0
CVE-2023-52212
N/A
< 1.23.8
WP Job Manager < 1.23.8 - Reflected Cross-Site Scripting (XSS)
N/A
< 1.26.2
WP Job Manager < 1.26.2 - Unauthenticated Arbitrary File Upload
N/A
< 1.29.3
WP Job Manager < 1.29.3 - Unauthenticated Object Injection
N/A
< 1.31.3
WP Job Manager < 1.31.3 - Phar Deserialization
N/A
2015-08-20< 1.23.8
WP Job Manager < 1.23.8 - Multiple Cross-Site Scripting
N/A
2016-07-11< 1.26.2
WP Job Manager <= 1.26.1 - Arbitrary File Upload
N/A
2018-03-02< 1.29.3
WP Job Manager <= 1.29.2 - PHP Object Injection
N/A
2019-01-07< 1.31.3
WP Job Manager <= 1.31.2 - PHP Object Injection via PHAR Deserialization
N/A
2018-03-15< 1.29.3
WordPress WP Job Manager plugin <=1.29.2 - Unauthenticated Object Injection vulnerability
N/A
2019-01-07< 1.31.3
WordPress WP Job Manager plugin <= 1.31.2 - Phar Deserialization vulnerability
N/A
2017-06-15< 1.26.2
WordPress plugin "WP Job Manager" fails to restrict access permissions