CVE-2018-19487

HIGH

WP-jobhunt < 2.4 - Unauthenticated User Information Enumeration via admin-ajax.php

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-19487. PoCs published by YOLOP0wn.

AI-analyzed exploit summary This repository contains a Python exploit for CVE-2018-19487 (user information disclosure) and CVE-2018-19488 (password reset) in the WordPress wp-jobhunt plugin. The exploit demonstrates user enumeration and password reset vulnerabilities via AJAX endpoints.

Description

The WP-jobhunt plugin before version 2.4 for WordPress does not control AJAX requests sent to the cs_employer_ajax_profile() function through the admin-ajax.php file, which allows remote unauthenticated attackers to enumerate information about users.

Exploits (1)

nomisec WORKING POC 6 stars
by YOLOP0wn · poc
https://github.com/YOLOP0wn/wp-jobhunt-exploit

This repository contains a Python exploit for CVE-2018-19487 (user information disclosure) and CVE-2018-19488 (password reset) in the WordPress wp-jobhunt plugin. The exploit demonstrates user enumeration and password reset vulnerabilities via AJAX endpoints.

Classification
Working Poc 95%
Attack Type
Info Leak | Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: WordPress wp-jobhunt plugin (versions 2.2 and below)
No auth needed
Prerequisites: Target must have the vulnerable wp-jobhunt plugin installed · Access to the WordPress admin-ajax.php endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://wpvulndb.com/vulnerabilities/9206
Various Sources x_refsource_misc
https://github.com/Antho59/wp-jobhunt-exploit

Scores

CVSS v3 7.5
EPSS 0.2626
EPSS Percentile 96.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-200
Status published
Products (1)
wp-jobhunt_project/wp-jobhunt < 2.4
Published Mar 21, 2019
Tracked Since Feb 18, 2026