6.9 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
31.3%
An issue was discovered in includes/component.php in the BuddyPress Docs plugin before 1.9.3 for WordPress. It is possible for authenticated users to edit documents of other users without proper permissions.
includes/component.php
www.securityfocus.com/bid/97238
github.com/boonebgorges/buddypress-docs/commit/75293ed4e5f31f04e54689bfe2c647e3e3f5e1a9
nvd.nist.gov/vuln/detail/CVE-2017-6954
wordpress.org/plugins/buddypress-docs/changelog