CVE-2024-7761

Name of the Vulnerable Software and Affected Versions: Simple Job Board WordPress plugin versions prior to 2.12.2

Description: A vulnerability was found in the Simple Job Board WordPress plugin that allows Stored XSS on behalf of the editor by embedding malicious script. This can lead to account takeover backdoor.

Recommendations: For versions prior to 2.12.2, update to version 2.12.2 or later to resolve the issue. As a temporary workaround, consider restricting the editor's capabilities to minimize the risk of exploitation. Avoid using the plugin's editor features until the issue is resolved.