CVE-2024-10104

Name of the Vulnerable Software and Affected Versions Jobs for WordPress versions prior to 2.7.8

Description The issue is related to the Jobs for WordPress plugin, where some of its Job settings are not properly sanitized and escaped. This could allow high privilege users, such as contributors, to perform Stored Cross-Site Scripting attacks.

Recommendations For versions prior to 2.7.8, update to version 2.7.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the Job settings for high privilege users until the update is applied.