Simple Job Board, CVE-2020-35749

CVE, Research URL: CVE-2020-35749
Home page URL: Security reports for Simple Job Board
Application: Simple Job Board
Published on: Jan 15, 2021
Research Description: Directory traversal vulnerability in class-simple_job_board_resume_download_handler.php in the Simple Board Job plugin 2.9.3 and earlier for WordPress allows remote attackers to read arbitrary files via the sjb_file parameter to wp-admin/post.php.
Affected versions: max 2.9.4.
Status: vulnerable