RULE(RULE ID:313053)

Rule General Information
Release Date: 2016-12-01
Rule Name: Wordpress Job Manager Plugin Cross-site Scripting Vulnerability -1 (CVE-2015-2321)
Rule Protection Details
Description: Cross-site scripting (XSS) vulnerability in the Job Manager plugin 0.7.22 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the email field.
Impact: An attacker can conduct a cross-site scripting attack to inject malicious client-side scripts into web pages viewed by other users, or to bypass access controls such as the same-origin policy, if affected version is installed.
Affected OS: Windows, Other Unix, FreeBSD, Linux
Reference: ExploitDB:37738
The vendor has updated advisory in its official website. Please check it for more information.