WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

BuddyPress < 7.3.0 - Multiple Authenticated REST API Vulnerabilities

Description

The BuddyPress WordPress plugin released version 7.3.0, a maintenance & security release, which included fixes for various authenticated REST API authorisation vulnerabilities.

The 7.3.0 release addresses four security issues:

- A vulnerability was fixed that could allow a member to create a group on behalf of another member via a REST API endpoint.
- A vulnerability was fixed that could allow members to favorite any private/hidden activities they shouldn’t access to via a REST API endpoint.
- A vulnerability was fixed that could allow the creator of a group to still be able to update or delete it after being demoted as a regular member of it via a REST API endpoint.
- A vulnerability was fixed that could allow group’s banned members to remove themselves from the group and still be able to join it or request a membership to it via a REST API endpoint.

It is recommended that BuddyPress users update to at least version 7.3.0.

Affects Plugins

buddypress
Fixed in version 7.3.0

References

URL
https://codex.buddypress.org/releases/version-7-3-0/
URL
https://buddypress.org/2021/04/buddypress-7-3-0-maintenance-security-release/
URL
https://plugins.trac.wordpress.org/changeset/2514559/buddypress

Classification

Type

ACCESS CONTROLS

OWASP top 10
A5: Broken Access Control
CWE
CWE-284

Miscellaneous

Original Researcher

Kien Hoang

Submitter website
https://profiles.wordpress.org/hoangkien1020/
Verified

No

WPVDB ID
a8b8bb3e-d540-4835-ad88-3523d084fb38

Timeline

Publicly Published

2021-04-14 (about 1 years ago)

Added

2021-04-14 (about 1 years ago)

Last Updated

2021-04-18 (about 1 years ago)

Our Other Services

WPScan WordPress Security Plugin