CVE-2025-14293 is a path traversal vulnerability classified under CWE-22 found in the WP Job Portal plugin for WordPress, an AI-powered recruitment system used by companies and job boards. The flaw exists in the 'downloadCustomUploadedFile' function, which insufficiently restricts pathname inputs, allowing authenticated users with Subscriber-level privileges or higher to manipulate file paths and read arbitrary files on the server. This arbitrary file read vulnerability can expose sensitive information such as configuration files, credentials, or other private data stored on the server. The vulnerability affects all versions up to and including 2.4.0. Exploitation requires authentication but no additional user interaction, and it can be performed remotely over the network. The CVSS 3.1 base score is 6.5, indicating a medium severity level, with a vector of AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N, meaning it is remotely exploitable with low attack complexity, requires low privileges, no user interaction, and impacts confidentiality but not integrity or availability. No public exploits have been reported yet, but the vulnerability poses a significant risk to organizations using this plugin, as attackers could leverage it to gather sensitive data for further attacks or reconnaissance. The lack of available patches at the time of reporting necessitates immediate mitigation efforts.

The primary impact of CVE-2025-14293 is the unauthorized disclosure of sensitive information stored on the server hosting the vulnerable WP Job Portal plugin. Attackers with low-level authenticated access can read arbitrary files, potentially exposing credentials, configuration files, personal user data, or other confidential information. This breach of confidentiality can facilitate further attacks such as privilege escalation, lateral movement, or targeted phishing. Although the vulnerability does not affect data integrity or availability directly, the exposure of sensitive data can severely undermine organizational security and privacy. Recruitment platforms often handle personal identifiable information (PII) and employment data, increasing the risk of identity theft or corporate espionage. The medium severity score reflects the balance between ease of exploitation and the limited scope of impact to confidentiality only. Organizations worldwide using this plugin risk data breaches that could damage reputation, incur regulatory penalties, and disrupt business operations.

Organizations should immediately verify if they are running WP Job Portal versions up to 2.4.0 and plan to upgrade to a patched version once available. In the absence of an official patch, administrators should restrict access to the plugin’s functionality by limiting Subscriber-level user permissions or disabling the 'downloadCustomUploadedFile' feature if feasible. Implementing web application firewall (WAF) rules to detect and block path traversal patterns in HTTP requests targeting the plugin can provide temporary protection. Regularly audit user accounts to ensure no unauthorized Subscriber-level accounts exist. Additionally, server-side hardening such as restricting file read permissions to only necessary directories and employing intrusion detection systems to monitor suspicious file access attempts can reduce risk. Monitoring logs for unusual file access patterns related to the plugin is also recommended. Finally, educating users about the risk of low-privilege account compromise can help prevent attackers from gaining the initial foothold.