Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

buddypress — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting buddypress. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top 10 Products buddypress:BuddyPress
CVE IDTitleCVSSSeverityPaused
CVE-2024-11976 BuddyPress <= 14.3.3 - Unauthenticated Arbitrary Shortcode Execution — BuddyPressCWE-94 7.3 High2026-01-23
CVE-2025-62022 WordPress BuddyPress plugin <= 14.3.4 - Broken Access Control vulnerability — BuddyPressCWE-862 7.5 High2025-10-22
CVE-2024-10011 BuddyPress <= 14.1.0 - Authenticated (Subscriber+) Directory Traversal — BuddyPressCWE-22 8.1 High2024-10-25
CVE-2024-4892 BuddyPress <= 12.4.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting — BuddyPressCWE-79 6.4 Medium2024-06-12
CVE-2024-3974 BuddyPress <= 12.4.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting — BuddyPressCWE-79 6.4 Medium2024-05-09
CVE-2021-21389 BuddyPress privilege escalation via REST API — BuddyPressCWE-863 8.1 High2021-03-26
CVE-2020-5244 Private data exposure via REST API in BuddyPress — BuddyPressCWE-284 8.0 High2020-02-24

This page lists every published CVE security advisory associated with buddypress. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.