CVE-2024-12213 – The WP Job Board Pro WordPress plugin has a cri... (How to Fix)

Q: What is the severity of CVE-2024-12213?

CVE-2024-12213 has a CVSS score of 9.8 (CRITICAL). The WP Job Board Pro WordPress plugin has a critical privilege escalation vulnerability that allows unauthenticated attackers to register as administrators. This affects all WordPress sites using this plugin up to version 1.2.76. Attackers can gain full administrative control over vulnerable websites.

📋 TL;DR

The WP Job Board Pro WordPress plugin has a critical privilege escalation vulnerability that allows unauthenticated attackers to register as administrators. This affects all WordPress sites using this plugin up to version 1.2.76. Attackers can gain full administrative control over vulnerable websites.

💻 Affected Systems

Products:

WP Job Board Pro WordPress Plugin

Versions: All versions up to and including 1.2.76

Operating Systems: Any OS running WordPress

Default Config Vulnerable: ⚠️ Yes

Notes: Requires the plugin to be installed and active with user registration enabled.

📦 What is this software?

Superio by Apusthemes

View all CVEs affecting Superio →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete site takeover with administrative privileges, allowing data theft, malware injection, defacement, and backdoor installation.

🟠

Likely Case

Attackers create administrator accounts to gain persistent access, then install malicious plugins/themes, steal sensitive data, or use the site for further attacks.

🟢

If Mitigated

With proper monitoring and detection, unauthorized admin accounts can be identified and removed before significant damage occurs.

🌐 Internet-Facing: HIGH

🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: CONFIRMED

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Simple HTTP POST request manipulation with the 'role' parameter set to 'administrator'.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.2.77 or later

Vendor Advisory: https://themeforest.net/item/superio-job-board-wordpress-theme/32180231

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins. 3. Find WP Job Board Pro. 4. Click 'Update Now' if available. 5. If not, download version 1.2.77+ from vendor and manually update.

🔧 Temporary Workarounds

Disable User Registration

all

Temporarily disable user registration in WordPress settings to prevent exploitation.

Deactivate Plugin

all

Deactivate WP Job Board Pro plugin until patched.

🧯 If You Can't Patch

Disable the WP Job Board Pro plugin immediately.
Implement web application firewall rules to block registration requests containing 'role' parameter.

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin > Plugins > WP Job Board Pro version. If version is 1.2.76 or lower, you are vulnerable.

Check Version:

wp plugin list --name='WP Job Board Pro' --field=version

Verify Fix Applied:

After updating, verify plugin version is 1.2.77 or higher in WordPress admin panel.

📡 Detection & Monitoring

Log Indicators:

Unusual user registration events
New administrator accounts created from unexpected IPs
POST requests to registration endpoints with 'role' parameter

Network Indicators:

HTTP POST to /wp-admin/admin-ajax.php or registration endpoints with role=administrator

SIEM Query:

source="wordpress.log" AND ("user_registered" OR "new_user") AND "administrator"

📊 Metadata

CVE ID: CVE-2024-12213

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-266

EPSS Score: 0.64% exploit probability (70th percentile)

Published: February 12, 2025

Last Updated: February 20, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-12213, you might also want to check these: