The BuddyPress WooCommerce My Account Integration plugin for WordPress, which helps create member pages for WooCommerce, has a security vulnerability. This is because it does not check for the appropriate capabilities when using the wc4bp_delete_page() function. This means that attackers who are logged in with Subscriber-level access or higher can potentially change the plugin’s page settings without authorization.