Title: Temporary patching broken access control vulnerability
Last modified: February 25, 2026

---

# Temporary patching broken access control vulnerability

 *  Resolved [hastibe](https://wordpress.org/support/users/hastibe/)
 * (@hastibe)
 * [3 months, 1 week ago](https://wordpress.org/support/topic/temporary-patching-broken-access-control-vulnerability/)
 * If one can’t yet fully update to the latest plugin version, can the broken access
   control vulnerability patched in the latest version (2.4.1) be manually fixed
   by pasting in the extra lines (147-151) [here](https://github.com/Automattic/WP-Job-Manager/pull/2914/files)
   added to class-wp-job-manager-ajax.php as a temporary step until updating to 
   the latest plugin version is possible?

Viewing 4 replies - 1 through 4 (of 4 total)

 *  Plugin Support [Jay](https://wordpress.org/support/users/bluejay77/)
 * (@bluejay77)
 * [3 months, 1 week ago](https://wordpress.org/support/topic/temporary-patching-broken-access-control-vulnerability/#post-18835594)
 * Hi [@hastibe](https://wordpress.org/support/users/hastibe/),
 * Just so we’re on the same page, would you share why one wouldn’t be able to fully
   update to the latest plugin version?
 *  Thread Starter [hastibe](https://wordpress.org/support/users/hastibe/)
 * (@hastibe)
 * [3 months, 1 week ago](https://wordpress.org/support/topic/temporary-patching-broken-access-control-vulnerability/#post-18836028)
 * [@bluejay77](https://wordpress.org/support/users/bluejay77/) — in short, because
   of other customization. This is a timely, security-related issue, though, and
   could you please help me with my question?
 *  Plugin Author [Donncha O Caoimh (a11n)](https://wordpress.org/support/users/donncha/)
 * (@donncha)
 * [3 months ago](https://wordpress.org/support/topic/temporary-patching-broken-access-control-vulnerability/#post-18839180)
 * You’ll need the changes from two PRs to be covered. If you don’t have password-
   protected jobs you can skip 2913 for now. You can skip the changes to the tests
   too of course.
    - [https://github.com/Automattic/WP-Job-Manager/pull/2913/changes](https://github.com/Automattic/WP-Job-Manager/pull/2913/changes)
    - [https://github.com/Automattic/WP-Job-Manager/pull/2914/changes](https://github.com/Automattic/WP-Job-Manager/pull/2914/changes)
 *  Thread Starter [hastibe](https://wordpress.org/support/users/hastibe/)
 * (@hastibe)
 * [3 months ago](https://wordpress.org/support/topic/temporary-patching-broken-access-control-vulnerability/#post-18839860)
 * Thanks, [@donncha](https://wordpress.org/support/users/donncha/)! Appreciate 
   your assistance.

Viewing 4 replies - 1 through 4 (of 4 total)

You must be [logged in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Ftemporary-patching-broken-access-control-vulnerability%2F%3Foutput_format%3Dmd&locale=en_US)
to reply to this topic.

 * ![](https://ps.w.org/wp-job-manager/assets/icon-256x256.gif?rev=2975257)
 * [WP Job Manager](https://wordpress.org/plugins/wp-job-manager/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wp-job-manager/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wp-job-manager/)
 * [Active Topics](https://wordpress.org/support/plugin/wp-job-manager/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wp-job-manager/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wp-job-manager/reviews/)

 * 4 replies
 * 3 participants
 * Last reply from: [hastibe](https://wordpress.org/support/users/hastibe/)
 * Last activity: [3 months ago](https://wordpress.org/support/topic/temporary-patching-broken-access-control-vulnerability/#post-18839860)
 * Status: resolved