CVE-2024-7762Exposure of Information Through Directory Listing in Simple JOB Board

CWE-548Exposure of Information Through Directory Listing3 documents3 sources
Severity
3.7LOWNVD
EPSS
0.4%
top 40.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Presstigers Simple JOB Board
Timeline
PublishedMay 15

Description

The Simple Job Board WordPress plugin before 2.12.6 does not prevent uploaded files from being listed, allowing unauthenticated users to access and download uploaded resumes

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 2.2 | Impact: 1.4

Affected Packages1 packages

🔴Vulnerability Details

2
CVEList
Simple Job Board < 2.12.6 - Unauthenticated Resumes Download2025-05-15
GHSA
GHSA-p9xg-r2f4-c78v: The Simple Job Board WordPress plugin before 22025-05-15
CVE-2024-7762 — Simple JOB Board vulnerability | cvebase