Buddypress <= 1.9.1 - Crafted bp_new_group_id Cookie Arbitrary Group Manipulation

Affects Plugin

fixed in version 1.9.2

References

CVE 2014-1889
EXPLOITDB 31571
PACKETSTORM 125213
SECUNIA 56950

Classification

Type UNKNOWN

Miscellaneous

Views 3781
Verified No
WPVDB ID 6320

Timeline

Publicly Published 2014-08-01 (almost 5 years ago)
Added 2014-08-01 (almost 5 years ago)
Last Updated 2015-05-15 (about 4 years ago)