Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackMarco Wotschka / WordfencePATCHSTACK:810F0D3A0D5BE9C201DE4F66A448404F
HistoryJun 16, 2022 - 12:00 a.m.

WordPress BuddyPress Group Reviews plugin <= 2.8.3 - Unauthorized AJAX Actions due to Nonce Bypass

2022-06-1600:00:00
Marco Wotschka / Wordfence
patchstack.com
6
wordfence
marco wotschka
ajax actions
wordpress
buddypress
group reviews
vulnerability
update

EPSS

0.001

Percentile

40.4%

JSON

Unauthorized AJAX Actions due to Nonce Bypass discovered by Marco Wotschka / Wordfence in WordPress BuddyPress Group Reviews plugin (versions <= 2.8.3).

Solution

           Update the WordPress BuddyPress Group Reviews plugin to the latest available version (at least 2.8.4).

Related

nvd 1
cvelist 1
cve 1
prion 1
wpvulndb 1
nvd
nvd
CVE-2022-2108
2022-07-18 17:15:08
cvelist
cvelist
CVE-2022-2108
2022-07-18 16:12:54
cve
cve
CVE-2022-2108
2022-07-18 17:15:08
prion
prion
Design/Logic Flaw
2022-07-18 17:15:00
wpvulndb
wpvulndb
BuddyPress Group Reviews < 2.8.4 - Subscriber+ Arbitrary Settings Update & Review Modification
2022-06-16 00:00:00

EPSS

0.001

Percentile

40.4%

JSON
Related for PATCHSTACK:810F0D3A0D5BE9C201DE4F66A448404F
nvd1cvelist1cve1prion1wpvulndb1