JobMonster WordPress theme authentication bypass (CVE-2025-5397)
Vulnerability
Summary
Hide ▲
Show ▼
CVE-2025-5397 in the JobMonster WordPress theme is being actively exploited to bypass authentication and hijack administrator accounts on sites with social login enabled. The flaw affects all versions up to 4.8.1 and was targeted in multiple attempts over the past 24 hours. JobMonster 4.8.2 fixes the issue, while disabling social login remains the immediate mitigation.
Related Happenings
Service Finder WordPress theme authentication bypass (CVE-2025-5947, actively exploited)
Vulnerability
First: 08.10.2025 18:57
Last: 08.10.2025 18:57
Sources 1
About this happening:
**Actively exploited** **CVE-2025-5947** is putting **Service Finder WordPress theme** sites on **version 6.0 and older** at risk of **administrator takeover**. The flaw is an **a...
Service Finder WordPress theme authentication bypass (CVE-2025-5947, actively exploited)
VulnerabilityAbout this happening: **Actively exploited** **CVE-2025-5947** is putting **Service Finder WordPress theme** sites on **version 6.0 and older** at risk of **administrator takeover**. The flaw is an **a...
Service Finder WordPress theme active auth bypass exploitation wave (CVE-2025-5947)
Exploitation Wave
First: 08.10.2025 18:57
Last: 08.10.2025 18:57
Sources 1
About this happening:
**CVE-2025-5947** is being exploited at scale against the **Service Finder WordPress theme**, with attackers using an authentication bypass to log in as administrators and take ov...
Service Finder WordPress theme active auth bypass exploitation wave (CVE-2025-5947)
Exploitation WaveAbout this happening: **CVE-2025-5947** is being exploited at scale against the **Service Finder WordPress theme**, with attackers using an authentication bypass to log in as administrators and take ov...
Timeline
-
04.11.2025 09:49 2 articles · 6mo ago
Wordfence blocks JobMonster authentication bypass exploit attempts
Initial DisclosureWordfence blocked multiple exploit attempts against client WordPress sites using the JobMonster theme, where CVE-2025-5397 can let unauthenticated attackers bypass authentication and access administrator accounts when social login is enabled. The issue affects JobMonster versions up to 4.8.1 and is fixed in 4.8.2; disabling social login is the immediate mitigation when patching cannot be done quickly.
Show sources
- Hackers exploit critical auth bypass flaw in JobMonster WordPress theme — www.bleepingcomputer.com — 04.11.2025 09:49
- Hackers exploit critical auth bypass flaw in JobMonster WordPress theme — www.bleepingcomputer.com — 04.11.2025 09:49