BuddyPress 5.0.0 - 5.1.1 - Private Data Exposure via REST API



Description
"Certain REST API requests could result in the exposure of private data."

Affects Plugin

fixed in version 5.1.2

References

URL https://buddypress.org/2020/01/buddypress-5-1-2/
URL https://github.com/buddypress/BuddyPress/security/advisories/GHSA-3j78-7m59-r7gv

Classification

Type UNKNOWN

Miscellaneous

Original Researcher Petter Walbø Johnsgård and Jacek Suski
Views 1221
Verified No
WPVDB ID 10105

Timeline

Publicly Published 2020-01-03 (6 months ago)
Added 2020-03-02 (4 months ago)
Last Updated 2020-03-03 (4 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin