logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

BuddyPress < 7.3.0 - Multiple Authenticated REST API Vulnerabilities

Description

The BuddyPress WordPress plugin released version 7.3.0, a maintenance & security release, which included fixes for various authenticated REST API authorisation vulnerabilities.

The 7.3.0 release addresses four security issues:

- A vulnerability was fixed that could allow a member to create a group on behalf of another member via a REST API endpoint.
- A vulnerability was fixed that could allow members to favorite any private/hidden activities they shouldn’t access to via a REST API endpoint.
- A vulnerability was fixed that could allow the creator of a group to still be able to update or delete it after being demoted as a regular member of it via a REST API endpoint.
- A vulnerability was fixed that could allow group’s banned members to remove themselves from the group and still be able to join it or request a membership to it via a REST API endpoint.

It is recommended that BuddyPress users update to at least version 7.3.0.

Affects Plugins

buddypress

Fixed in version 7.3.0

References

URL

https://codex.buddypress.org/releases/version-7-3-0/

URL

https://buddypress.org/2021/04/buddypress-7-3-0-maintenance-security-release/

URL

https://plugins.trac.wordpress.org/changeset/2514559/buddypress

Classification

Type

ACCESS CONTROLS

OWASP top 10

A5: Broken Access Control

CWE

CWE-284

Miscellaneous

Original Researcher

Kien Hoang

Submitter website

https://profiles.wordpress.org/hoangkien1020/

Verified

No

WPVDB ID

a8b8bb3e-d540-4835-ad88-3523d084fb38

Timeline

Publicly Published

2021-04-14 (about 9 months ago)

Added

2021-04-14 (about 9 months ago)

Last Updated

2021-04-18 (about 9 months ago)

Our Other Services

WPScan WordPress Security Plugin