Log out
Get PRO

Latest

Access violation vulnerability in BuddyPress Builder for Elementor – BuddyBuilder 1.7.4

  • Severity: medium-risk
  • Status: Fixed
  • Publication: November 12, 2024

The BuddyPress Builder for Elementor is a plugin for WordPress that has a security vulnerability. This vulnerability allows attackers, who have Contributor-level access or higher, to access data from private or draft posts created by Elementor. This is because the plugin does not have enough restrictions on which posts can be included. If you have this plugin, make sure to update it to version 1.7.5 to protect your website.

Detected in:

BuddyPress Builder for Elementor – BuddyBuilder fixed vulnerable versions: >= * <= 1.7.4

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.