WordPress Buddypress Vulnerabilities
Wordpress Buddypress vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Reflected Cross-Site Scripting in Push Notification for Post and BuddyPress Plugin by WordPress
CVE-2024-12407WordpressPush Notification For ...6.1MEDIUMWordPress rtMedia for WordPress, BuddyPress and bbPress plugin <= 4.6.14 - Broken Access Control vulnerability
CVE-2023-41951WordpressRtmedia For WordPress,...4.3MEDIUMBuddyPress plugin vulnerable to Directory Traversal on Windows
CVE-2024-10011WordpressBuddypress8.1HIGHFreemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes
CVE-2022-4974WordpressYasr β Yet Another Sta...6.3MEDIUMArbitrary Attachment Deletion Vulnerability in Youzify BuddyPress Plugin
CVE-2024-9067WordpressYouzify β Buddypress C...4.3MEDIUMYouzify BuddyPress Plugin Vulnerable to Stored Cross-Site Scripting
CVE-2024-8987WordpressYouzify β Buddypress C...5.4MEDIUMReflected Cross-Site Scripting Vulnerability in BuddyPress Docs Plugin
CVE-2024-9207WordpressBuddypress Docs6.1MEDIUMYouzify BuddyPress Plugin Vulnerable to SQL Injection
CVE-2024-4742WordpressYouzify β Buddypress C...8.8HIGHStored Cross-Site Scripting Vulnerability in BuddyPress Plugin for WordPress
CVE-2024-4892WordpressBuddypress6.4MEDIUMUnauthorized Access to Restricted Content via REST API
CVE-2024-0972WordpressBuddypress Members Only5.3MEDIUMStored Cross-Site Scripting Vulnerability in BuddyPress Plugin for WordPress
CVE-2024-3974WordpressBuddypress6.4MEDIUMBlind SQL Injection Vulnerability in rtMedia Plugin Affects Sensitive Data
CVE-2024-3293WordpressRtmedia For WordPress,...πΎπ‘8.8HIGHUntrusted Input Vulnerability in BuddyPress WooCommerce My Account Integration Could Lead to PHP Object Injection and File Deletion
CVE-2024-2025WordpressBuddypress WooCommerce...8.8HIGHrtMedia for WordPress, BuddyPress and bbPress < 4.6.16 - Subscriber+ RCE
CVE-2023-5931WordpressrtMedia for WordPress,...8.8HIGHrtMedia for WordPress, BuddyPress and bbPress < 4.6.16 - Admin+ RCE
CVE-2023-5939WordpressrtMedia for WordPress,...7.2HIGHWordPress Youzify Plugin <= 1.2.2 is vulnerable to Insecure Direct Object References (IDOR)
CVE-2023-47191WordpressYouzify β BuddyPress C...6.5MEDIUMWordPress BP Better Messages Plugin <= 2.4.0 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-49168WordpressBetter Messages β Live...6.5MEDIUMYouzify < 1.2.0 - Unauthenticated SQLi
CVE-2022-1950WordpressYouzify β Buddypress C...9.8CRITICALWbcom Designs β BuddyPress Group Reviews <= 2.8.3 - Unauthorized AJAX Actions due to Nonce Bypass
CVE-2022-2108WordpressWbcom Designs β Buddyp...6.5MEDIUMYouzify < 1.0.7 - Stored Cross-Site Scripting via Biography
CVE-2021-24443WordpressYouzify β Buddypress C...5.4MEDIUMBuddyPress privilege escalation via REST API
CVE-2021-21389WordpressBuddypressπΎπ‘EPSS 67%8.1HIGH- CVE-2015-9455WordpressBuddypress-activity-plus8.1HIGH
- CVE-2014-1889WordpressBuddypress6.5MEDIUM
- CVE-2017-6954WordpressBuddypress4.3MEDIUM
- CVE-2014-1888WordpressBuddypress