CVE-2025-5397 - Geek Feed

Security
Tech News

Hackers exploit critical auth bypass flaw in JobMonster WordPress theme

November 6, 2025November 6, 2025 geekfeed0Tagged Account takeover, Actively Exploited, Administrator, Authentication Bypass, CVE-2025-5397, Theme, vulnerability, wordpress

Threat actors are targeting a critical vulnerability in the JobMonster WordPress theme that allows hijacking of administrator accounts under certain conditions. The malicious activity was detected by Wordfence, a WordPress security firm, after blocking multiple exploit attempts against its clients over the past 24 hours. JobMonster, created by NooThemes, is a premium WordPress theme used […]

2 mins read