CVE-2025-54738 — Authentication Bypass Using an Alternate Path or Channel in Jobmonster

CWE-288 — Authentication Bypass Using an Alternate Path or Channel3 documents3 sources

Severity

—N/A

No vector

EPSS

0.0%

top 89.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nootheme Jobmonster

Timeline

PublishedAug 28

Description

Authentication Bypass Using an Alternate Path or Channel vulnerability in NooTheme Jobmonster noo-jobmonster allows Authentication Abuse.This issue affects Jobmonster: from n/a through <= 4.7.9.

Affected Packages1 packages

▶CVEListV5nootheme/jobmonster4.7.9

🔴Vulnerability Details

GHSA

GHSA-m47q-9445-w43j: Authentication Bypass Using an Alternate Path or Channel vulnerability in NooTheme Jobmonster allows Authentication Abuse↗2025-08-28

▶

CVEList

WordPress Jobmonster Theme <= 4.7.9 - Broken Authentication Vulnerability↗2025-08-28

▶