JS Job Manager, a69933112186b63bc095eca706b7fe40c213989a

CVE, Research URL: a69933112186b63bc095eca706b7fe40c213989a
Home page URL: Security reports for JS Job Manager
Application: JS Job Manager
Published on: Sep 30, 2021
Research Description: JS Job Manager [js-jobs] < 1.1.9 JS Job Manager < 1.1.9 - Arbitrary Plugin Installation/Activation The JS Job Manager plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the jsjobs_ajax function in versions before 1.1.9. This makes it possible for unauthenticated attackers to arbitrarily install and activate plugins.
Affected versions: max 1.1.9.
Status: vulnerable