CVE-2025-39537

CVSS v3.1

7.1

High

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions: Chimpstudio WP JobHunt versions n/a through 7.1

Description: The issue affects Chimpstudio WP JobHunt, allowing exploitation of incorrectly configured access control security levels through an Authorization Bypass Through User-Controlled Key vulnerability. This enables exploiting incorrectly configured access control security levels.

Recommendations: For Chimpstudio WP JobHunt versions n/a through 7.1, update to a version that addresses the Authorization Bypass Through User-Controlled Key vulnerability to prevent exploitation of incorrectly configured access control security levels.

Fix

IDOR

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-639CWE-79

Related Identifiers

CVE-2025-39537

Affected Products

Chimpstudio Wp Jobhunt

CVE-2025-39537

Weakness Enumeration

Related Identifiers

Affected Products

References · 4