CVE-2020-35749 in Simple Board Job Plugininfo

Summary

by MITRE • 01/16/2021

Directory traversal vulnerability in class-simple_job_board_resume_download_handler.php in the Simple Board Job plugin 2.9.3 and earlier for WordPress allows remote attackers to read arbitrary files via the sjb_file parameter to wp-admin/post.php.

Be aware that VulDB is the high quality source for vulnerability data.

Analysis

by VulDB Data Team • 03/08/2025

The vulnerability identified as CVE-2020-35749 represents a critical directory traversal flaw within the Simple Board Job plugin for WordPress systems. This issue affects versions 2.9.3 and earlier, specifically targeting the class-simple_job_board_resume_download_handler.php component that handles file download operations. The vulnerability manifests through the sjb_file parameter in the wp-admin/post.php endpoint, creating an exploitable path that allows unauthorized access to sensitive system files.

The technical implementation of this vulnerability stems from inadequate input validation and sanitization within the plugin's file handling mechanism. When the sjb_file parameter is processed without proper restrictions, attackers can manipulate the input to traverse directory structures and access files outside the intended download scope. This flaw aligns with CWE-22, which categorizes directory traversal vulnerabilities as weaknesses that allow attackers to access files and directories they should not be permitted to access. The vulnerability essentially bypasses normal access controls by exploiting how the application processes file paths, enabling arbitrary file read operations.

The operational impact of this vulnerability extends beyond simple information disclosure, as it provides attackers with potential access to sensitive data including configuration files, database credentials, user information, and other system resources. Attackers can leverage this weakness to extract WordPress core files, plugin files, theme files, and potentially even system-level configuration data that could aid in further exploitation attempts. The remote nature of the attack means that no local system access is required, making it particularly dangerous for WordPress installations. This vulnerability directly maps to ATT&CK technique T1213.002, which involves accessing data through the use of remote access tools or exploitation of web application vulnerabilities.

Mitigation strategies for CVE-2020-35749 should prioritize immediate plugin updates to versions that address the directory traversal flaw. System administrators should implement proper input validation and sanitization measures that restrict file path access to legitimate download directories. Additional protective measures include implementing web application firewalls that can detect and block suspicious path traversal patterns, restricting file download functionality to authenticated users only, and conducting regular security audits of WordPress plugins. The vulnerability demonstrates the importance of proper secure coding practices and input validation in preventing common web application attacks, particularly those that exploit insufficient restrictions on file access operations. Organizations should also consider implementing principle of least privilege access controls and monitoring for unusual file access patterns that could indicate exploitation attempts.

Reservation

12/28/2020

Disclosure

01/16/2021

Moderation

accepted

CPE

ready

Exploit

Download

EPSS

0.30479

KEV

no

Activities

very low

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!