CVE-2024-0593

Name of the Vulnerable Software and Affected Versions The Simple Job Board plugin for WordPress versions up to, and including, 2.10.8

Description The issue allows unauthorized access to data due to insufficient authorization checking on the fetch quick job() function. This makes it possible for unauthenticated attackers to fetch arbitrary posts, which can be password protected or private and contain sensitive information.

Recommendations For versions up to, and including, 2.10.8, update to a version higher than 2.10.8 to resolve the issue. As a temporary workaround, consider disabling the fetch quick job() function until a patch is available.