WP Job Manager Vulnerabilities
The WP Job Manager WordPress plugin has 4 known security vulnerabilities, including 1 critical. The most recent was disclosed on January 7, 2019. Check whether your site runs an affected version below.
View WP Job Manager on WordPress.orgSummary
Latest vulnerability disclosed on January 7, 2019.
Recommendation
WPSentry recommends extreme caution
Only run WP Job Manager if it is updated to the latest patched release. This plugin has a history of 1 critical, potentially exploitable vulnerability. If you already use it, update immediately — or consider a safer alternative.
Is your site affected?
Run a free external scan to detect WP Job Manager and 35+ other WordPress security checks — no login or plugin required.
Known WP Job Manager vulnerabilities
- high
WP Job Manager <= 1.31.2 - PHP Object Injection via PHAR Deserialization
Affected versions: <1.31.3Disclosed January 7, 2019 - critical
WP Job Manager <= 1.29.2 - PHP Object Injection
Affected versions: <=1.29.2Disclosed March 2, 2018 - high
WP Job Manager <= 1.26.1 - Arbitrary File Upload
Affected versions: <1.26.2Disclosed July 11, 2016 - medium
WP Job Manager < 1.23.8 - Multiple Cross-Site Scripting
Affected versions: <1.23.8Disclosed August 20, 2015
How to stay protected
Update promptly
Keep WP Job Manager on its latest release — most vulnerabilities are fixed in newer versions.
Scan regularly
Run an external scan after every update to catch outdated or vulnerable software early.
Monitor continuously
Enable monitoring to get alerted the moment a new issue affects your stack.