3 matches found
CVE-2023-45755
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in BuddyBoss BuddyPress Global Search plugin = 1.2.1 versions...
CVE-2023-45755
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in BuddyBoss BuddyPress Global Search plugin = 1.2.1 versions...
PT-2023-29671 · Buddyboss · Buddyboss Buddypress Global Search Plugin
Name of the Vulnerable Software and Affected Versions: BuddyBoss BuddyPress Global Search plugin versions 1.2.1 and earlier Description: The issue is related to an Authenticated Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with admin or higher privileges can inject...