The BuddyPress plugin for WordPress is vulnerable to a security issue if you are using versions up to 7.2.1. This issue is caused by a lack of authorization validation on a certain feature of the software. This means that attackers who have access to the system can create new groups on behalf of someone else.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
