Plattform
wordpress
Komponente
wpjobboard
Behoben in
5.11.1
CVE-2025-30967 describes a critical Remote Code Execution (RCE) vulnerability within the WPJobBoard WordPress plugin. This flaw allows an attacker to leverage Cross-Site Request Forgery (CSRF) to upload a malicious web shell to the web server, granting them unauthorized access and control. The vulnerability impacts versions of WPJobBoard from 0.0 up to and including 5.11.1; upgrading to version 5.11.1 resolves the issue.
The impact of CVE-2025-30967 is severe. Successful exploitation allows an attacker to upload a web shell, effectively granting them remote command execution capabilities on the affected WordPress server. This can lead to complete compromise of the server, including data exfiltration, malware deployment, and further attacks on the network. The CSRF nature of the vulnerability means an attacker doesn't necessarily need to authenticate to exploit it, making it particularly dangerous. The ability to upload arbitrary code opens the door to a wide range of malicious activities, from defacing the website to using the server as a launchpad for attacks against other systems.
CVE-2025-30967 was publicly disclosed on 2025-04-15. The vulnerability's ease of exploitation, combined with the widespread use of WordPress and WPJobBoard, suggests a potential for active exploitation. While no public proof-of-concept (PoC) code has been observed as of this writing, the CSRF nature of the vulnerability makes it relatively straightforward to exploit, increasing the likelihood of exploitation attempts. The vulnerability has been added to the CISA KEV catalog, indicating a heightened risk.
Websites utilizing the WPJobBoard plugin, particularly those running older, unpatched versions (0.0 - 5.11.1), are at significant risk. Shared hosting environments where WordPress installations have limited access controls are especially vulnerable, as an attacker compromising one site could potentially exploit this vulnerability to gain access to others on the same server.
• wordpress / composer / npm:
grep -r 'wp_insert_file' /var/www/html/wp-content/plugins/wpjobboard/• wordpress / composer / npm:
wp plugin list --status=active | grep wpjobboard• wordpress / composer / npm:
curl -I https://your-wordpress-site.com/wp-content/plugins/wpjobboard/ | grep Serverdisclosure
Exploit-Status
EPSS
0.12% (31% Perzentil)
CISA SSVC
CVSS-Vektor
The primary mitigation for CVE-2025-30967 is to immediately upgrade the WPJobBoard plugin to version 5.11.1 or later. If upgrading is not immediately feasible, consider implementing strict CSRF protection measures at the web server level. This might involve implementing additional CSRF tokens or utilizing a Web Application Firewall (WAF) with CSRF protection rules. Regularly review WordPress plugin installations and disable or remove any unused plugins to reduce the attack surface. After upgrading, verify the fix by attempting to upload a file via a CSRF request – the upload should be blocked.
Actualice el plugin WPJobBoard a la versión 5.11.1 o superior para mitigar la vulnerabilidad de CSRF que podría permitir la ejecución remota de código. Asegúrese de realizar una copia de seguridad de su sitio web antes de actualizar el plugin. Verifique la compatibilidad de la actualización con otros plugins y temas.
Schwachstellenanalysen und kritische Warnungen direkt in deinen Posteingang.
CVE-2025-30967 is a critical Remote Code Execution vulnerability in the WPJobBoard WordPress plugin, allowing attackers to upload web shells via CSRF.
You are affected if you are using WPJobBoard versions 0.0 through 5.11.1. Immediately check your plugin version and upgrade if necessary.
Upgrade the WPJobBoard plugin to version 5.11.1 or later. If immediate upgrade is not possible, implement temporary workarounds like restricting file upload permissions.
While no active exploitation has been confirmed, the vulnerability's severity and ease of exploitation suggest a moderate probability of exploitation.
Refer to the official WPJobBoard website and WordPress plugin repository for the latest security advisories and updates related to CVE-2025-30967.
Lade deine Abhängigkeitsdatei hoch und erfahre sofort, ob dich diese und andere CVEs treffen.
Lade deine Abhängigkeitsdatei hoch und erfahre sofort, ob dich diese und andere CVEs treffen.