Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:11 a.m.19 views

CVE-2025-1909

The BuddyBoss Platform Pro plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.7.01. This is due to insufficient verification on the user being supplied during the Apple OAuth authenticate request through the plugin. This makes it possible for...

9.8CVSS6.8AI score0.00573EPSS
Exploits0References1
Circl
Circl
added 2025/05/05 8:20 p.m.21 views

CVE-2025-1909

creationtimestamp| type| source ---|---|--- 2025-05-05 20:20:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14984 2025-05-05 20:36:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3loh7uj3n3u2p 2026-05-26 14:12:37+00:00| seen|...

9.8CVSS7.8AI score0.00573EPSS
Exploits0References3
NVD
NVD
added 2025/05/05 8:15 p.m.19 views

CVE-2025-1909

The BuddyBoss Platform Pro plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.7.01. This is due to insufficient verification on the user being supplied during the Apple OAuth authenticate request through the plugin. This makes it possible for...

9.8CVSS0.00573EPSS
Exploits0References3
CVE
CVE
added 2025/05/05 7:42 p.m.86 views

CVE-2025-1909

The CVE describes an authentication bypass in the WordPress BuddyBoss Platform Pro plugin (WordPress). Affected versions: up to and including 2.7.01. Root cause: insufficient verification on the user supplied during the Apple OAuth authentication request, allowing unauthenticated attackers to log...

9.8CVSS8.9AI score0.00573EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder