CVE-2023-51545

HIGH WAF: Medium

CVSS 8.8 Published: 2023-12-29

CWE-352 CWE-502

Cross-Site Request Forgery (CSRF), Deserialization of Untrusted Data vulnerability in ThemeHigh Job Manager & Career – Manage job board listings, and recruitments.This issue affects Job Manager & Career – Manage job board listings, and recruitments: from n/a through 1.4.4.

WAF Coverage Analysis

Cross-Site Request Forgery (CSRF) Low WAF Coverage

OWASP: A01:2021 Broken Access Control

Insecure Deserialization Medium WAF Coverage

OWASP: A08:2021 Software and Data Integrity Failures

944xxx - Java Attack

Affected Software

Vendor	Product	Version
themehigh	job_manager_\&_career	up to 1.4.4

References

patchstack.com (Third Party Advisory)

Back to CVE Database