Access Control Vulnerability in PickPlugins Job Board Manager
CVE-2024-55993

5.3MEDIUM

Key Information:

Vendor: WordPress
Status: Job Board Manager
Vendor: CVE Published:; 16 December 2024

Summary

The CVE-2024-55993 vulnerability is a missing authorization issue found in the PickPlugins Job Board Manager plugin, which allows unauthorized users to exploit incorrectly configured access control security levels. This security flaw puts systems at risk, with potential unauthorized access to sensitive information and functionalities within the Job Board Manager. Affected versions span from n/a through 2.1.60, underscoring the urgency for users to update to patched versions to mitigate any security risks.

Affected Version(s)

Job Board Manager <= 2.1.60

References

https://patchstack.com/database/wordpress/plugin/job-boar...

vdb-entry

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 16, 2024
Vulnerability Reserved
Dec 14, 2024

Credit

Mika (Patchstack Alliance)