| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-45074 | WordPress Activity Reactions For Buddypress Plugin <= 1.0.22 is vulnerable to Cross Site Request Forgery (CSRF) | Paramveer Singh for Arete IT Private Limited | Activity Reactions For Buddypress | Medium | 4.3 | 2023-04-23 11:08:00 | Deep Dive |
| CVE-2022-1950 | Youzify < 1.2.0 - Unauthenticated SQLi | Unknown | Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress | 超危 | - | 2022-08-01 12:49:04 | Deep Dive |
| CVE-2022-2108 | Wbcom Designs – BuddyPress Group Reviews <= 2.8.3 - Unauthorized AJAX Actions due to Nonce Bypass | wbcomdesigns | Wbcom Designs – BuddyPress Group Reviews | Medium | 6.5 | 2022-07-18 16:12:54 | Deep Dive |
| CVE-2021-24443 | Youzify < 1.0.7 - Stored Cross-Site Scripting via Biography | Unknown | Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress | 中危 | - | 2021-08-02 10:31:57 | Deep Dive |
| CVE-2021-21389 | BuddyPress privilege escalation via REST API | buddypress | BuddyPress | High | 8.1 | 2021-03-26 20:15:14 | Deep Dive |
| CVE-2020-5244 | Private data exposure via REST API in BuddyPress | buddypress | BuddyPress | High | 8.0 | 2020-02-24 17:25:15 | Deep Dive |