Description
WordPress Plugin WP Job Manager is prone to a privilege escalation vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions; other attacks are also possible. WordPress Plugin WP Job Manager version 1.34.3 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.34.4 or latest
References
https://wpdeeply.com/wordpress-protected-meta-via-wp-job-manager/
https://plugins.svn.wordpress.org/wp-job-manager/trunk/readme.txt
Related Vulnerabilities
WordPress Plugin BibleGet I/O Unspecified Vulnerability (3.4)
WordPress Plugin WP Courses LMS Cross-Site Scripting (2.0.43)
WordPress Plugin Permalink Manager Lite SQL Injection (2.2.12)
WordPress Plugin BuddyPress Security Bypass (6.3.0)
WordPress Plugin Contact Form 7 Dynamic Text Extension Cross-Site Scripting (2.0.2.1)