CVE-2023-5906

Name of the Vulnerable Software and Affected Versions Job Manager & Career WordPress plugin versions prior to 1.4.4

Description The issue allows an unauthorized user to view and download private files of other users due to a vulnerability in the Directory Listings system. This poses a serious security threat as it enables an attacker to gain access to confidential data and files without permission.

Recommendations For versions prior to 1.4.4, update to version 1.4.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the Directory Listings system until the update is applied.