Buddypress <= 1.9.1 - Stored Cross-Site Scripting (XSS)

Affects Plugin

fixed in version 1.9.2

References

CVE 2014-1888
PACKETSTORM 125212
SECUNIA 56950

Classification

Type XSS
OWASP Top 10 A3: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Views 3744
Verified No
WPVDB ID 6321

Timeline

Publicly Published 2014-08-01 (almost 5 years ago)
Added 2014-08-01 (almost 5 years ago)
Last Updated 2015-05-15 (about 4 years ago)