Documentation: Home / Vulnerabilities / Input validation vulnerability in WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting 1.13.3

Latest

Input validation vulnerability in WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting 1.13.3

CVE-2024-12808

Severity: medium-risk
Status: Open
Publication: March 3, 2025

The WP ERP plugin for WordPress, which helps with human resources, recruitment, job listings, and managing customer relationships and accounting through WooCommerce, has a security issue. This issue, called Stored Cross-Site Scripting, allows hackers with admin-level access to add harmful code to pages that can run whenever a user views them. This only affects certain types of installations.

Detected in:

WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting open vulnerable versions: >= * <= 1.13.3

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Login protection as essential security

Input validation vulnerability in WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting 1.13.3

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles