Civi - Job Board WordPress Theme v2.1.4

Decryption key:

To view the content, you need to Sign In or Register.

- [Fixed] Authorization bypass lets attackers delete companies by modifying the "item_id" in requests.
- [Fixed] The "post_creator" codes can be altered to manipulate job postings without authentication.
- [Fixed] The "jobs_id" parameter lacks validation, allowing unauthorized edits to job postings.
- [Fixed] The "text area" is not working after entering more than 600 characters.