Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authorization Bypass on BuddyBoss
Vulnerability Description
Authorization bypass vulnerability in BuddyBoss 2.2.9 version, the exploitation of which could allow an authenticated user to access and rename other users' albums. This vulnerability can be exploited by changing the album identification (id).
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
通过用户控制密钥绕过授权机制
Vulnerability Title
BuddyBoss 安全漏洞
Vulnerability Description
BuddyBoss Platform是BuddyBoss公司的一个在 WordPress 上运行在线社区的最先进的插件。 BuddyBoss 2.2.9 版本存在安全漏洞,该漏洞源于允许经过身份验证的用户访问并重命名其他用户的相册。
CVSS Information
N/A
Vulnerability Type
N/A