Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Community by PeepSo – Social Network, Membership, Registration, User Profiles 6.1.6.0

  • Severity: medium-risk
  • Status: Open
  • Publication: November 16, 2023

The Community by PeepSo plugin for WordPress is not secure in versions up to 6.1.6.0. Attackers who are not logged in can delete posts on the website if they can manipulate a site administrator into clicking a link. This is because the delete function does not have enough security measures in place.

Detected in:

Community by PeepSo – Download from PeepSo.com fixed vulnerable versions:
Community by PeepSo – Social Network, Membership, Registration, User Profiles, Premium – Mobile App fixed vulnerable versions:
Community by PeepSo – Social Network, Membership, Registration, User Profiles open vulnerable versions: >= * <= 6.1.6.0

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.