WP-Safety

WPCareers Security & Risk Analysis

wordpress.org/plugins/wpcareers

The plugin allows you to build an online jobs/resume website, where the applicants will be able to search, update, add/remove or edit their resumes/pr …

10 active installs v1.1.2-c PHP + WP 2.8+ Updated Feb 13, 2015
careercareer-portalcareersjob-portalwpcareers
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is WPCareers Safe to Use in 2026?

Generally Safe

Score 85/100

WPCareers has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 11yr ago
Risk Assessment

The wpcareers plugin v1.1.2-c presents a mixed security profile. On the positive side, there are no known CVEs or recorded vulnerabilities, suggesting a generally stable security history. Furthermore, the plugin exhibits a commendably small attack surface with zero AJAX handlers, REST API routes, shortcodes, or cron events, indicating good practices in limiting potential entry points. The majority of SQL queries (89%) also utilize prepared statements, which is a strong security measure against SQL injection.

Key Concerns

  • High number of flows with unsanitized paths
  • High severity taint flows found
  • Very low percentage of properly escaped output
  • No nonce checks implemented
  • Limited capability checks
  • Use of dangerous functions (unserialize, create_function)
Vulnerabilities
None known

WPCareers Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

WPCareers Release Timeline

v1.0
Code Analysis
Analyzed Apr 16, 2026

WPCareers Code Analysis

Dangerous Functions
5
Raw SQL Queries
16
133 prepared
Unescaped Output
316
10 escaped
Nonce Checks
0
Capability Checks
1
File Operations
40
External Requests
0
Bundled Libraries
0

Dangerous Functions Found

ini_setini_set('track_errors', true);include/Smarty/Config_File.class.php:240
unserialize$args = unserialize($insert_args[$i]);include/Smarty/internals/core.process_cached_inserts.php:27
unserialize$_cache_info = unserialize(substr($_contents, $_info_start, $_info_len));include/Smarty/internals/core.read_cache_file.php:54
create_functionadd_action('plugins_loaded', create_function('$a', 'global $wpcareers; $wpcareers = new WP_careers()jp_control.php:114
create_functioncreate_function('$a, $b', '$skeys=explode(\',\',\''.$sortby.'\');jp_main.php:183

SQL Query Safety

89% prepared149 total queries

Output Escaping

3% escaped326 total outputs
Data Flows · Security
25 unsanitized

Data Flow Analysis

25 flows25 with unsanitized paths
process_posts (admin/jp_admin_posts.php:14)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

WPCareers Attack Surface

Entry Points0
Unprotected0
WordPress Hooks 12
actioninitadmin/jp_admin_setup.php:66
actionadmin_menuadmin/jp_admin_setup.php:67
actionadmin_headadmin/jp_admin_setup.php:68
actionwp_headadmin/jp_admin_setup.php:69
actionadmin_headadmin/jp_admin_setup.php:70
actionplugins_loadedjp_control.php:114
filterthe_contentjp_control.php:115
filterthe_titlejp_control.php:116
filterwp_list_pagesjp_control.php:117
filtersingle_post_titlejp_control.php:118
filterquery_varsjp_control.php:119
filterthe_generatorjp_control.php:120
Maintenance & Trust

WPCareers Maintenance & Trust

Maintenance Signals

WordPress version tested2.9.2
Last updatedFeb 13, 2015
PHP min version
Downloads24K

Community Trust

Rating52/100
Number of ratings5
Active installs10
Alternatives

WPCareers Alternatives

Jobus – Job Board, Recruitment & Hiring Platform

Jobus – Job Board, Recruitment & Hiring Platform

jobus

A
100

The ultimate WordPress Job Board plugin. Create a professional recruitment website with unlimited job listings, candidate profiles, and company pages.

100 No CVEs
WP Job Manager

WP Job Manager

wp-job-manager

C
52

Create a careers page for your company website, or build a public job board for your community.

80K 1 unpatched
WP Job Openings – Job Listing, Career Page and Recruitment Plugin

WP Job Openings – Job Listing, Career Page and Recruitment Plugin

wp-job-openings

A
99

WP Job Openings plugin is the most simple yet powerful plugin for setting up a job listing page for your WordPress website.

40K 2 CVEs
Simple Job Board

Simple Job Board

simple-job-board

A
86

job board plugin for job listings, managing applicants, applications, categories, job types, taxonomies, career page, job openings, and recruiters

10K 13 CVEs
WP Job Portal – AI-Powered Recruitment System for Company or Job Board website

WP Job Portal – AI-Powered Recruitment System for Company or Job Board website

wp-job-portal

D
40

A smart, AI-powered job board plugin for WordPress. Build modern recruitment platforms with job listings, resume search, and intelligent matching.

8K 1 unpatched
Developer Profile

WPCareers Developer Profile

cina

2 plugins · 20 total installs

89
trust score
Avg Security Score
93/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect WPCareers

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/wpcareers/themes/default/css/default.css/wp-content/plugins/wpcareers/themes/default/css/admin.css/wp-content/plugins/wpcareers/js/jp_main.js/wp-content/plugins/wpcareers/js/jp_post_job.js/wp-content/plugins/wpcareers/js/jp_post_resume.js/wp-content/plugins/wpcareers/js/jp_list_job.js/wp-content/plugins/wpcareers/js/jp_list_resume.js/wp-content/plugins/wpcareers/js/jp_search.js+4 more
Version Parameters
wpcareers/themes/default/css/default.css?ver=wpcareers/themes/default/css/admin.css?ver=

HTML / DOM Fingerprints

CSS Classes
wpcareers_admin_menu
HTML Comments
Copyright 2010 Mohammad ForganiDescription: Wordpress wpCareersPlugin Name: wpcareersPlugin URI: http://www.forgani.com/root/wordpress-careers-plugin/+26 more
Data Attributes
wpcareers_action
JS Globals
WP_Careerswpcareers
FAQ

Frequently Asked Questions about WPCareers