Lucene search
WpvulndbWPVDB-ID:57F1DBE6-2220-4004-8C09-3ECAD45C687FHistoryMar 17, 2021 - 12:00 a.m.
BuddyPress < 7.2.1 - REST API Privilege Escalation
2021-03-1700:00:00
wpscan.com
19
buddypress
wordpress
plugin
versions
7.2.1
vulnerability
privilege escalation
rest api.
EPSS
0.824
Percentile
98.5%
The BuddyPress WordPress plugin, versions before 7.2.1, fixed a vulnerability that could allow a privilege escalation from a regular user to Administrator, using the BuddyPress REST API buddypress/v1/members/me endpoint.
Related
osv
osv
BuddyPress privilege escalation via REST API
2021-10-06 17:46:55
CVE-2021-21389
2021-03-26 21:15:13
cvelist
cvelist
CVE-2021-21389 BuddyPress privilege escalation via REST API
2021-03-26 20:15:14
hackerone
hackerone
WordPress: Privilege Escalation via REST API to Administrator leads to RCE
2021-02-19 15:37:40
prion
prion
Design/Logic Flaw
2021-03-26 21:15:00
githubexploit
githubexploit
Exploit for Incorrect Authorization in Buddypress
2021-05-31 14:12:26
checkpoint_advisories
checkpoint_advisories
WordPress BuddyPress Plugin Privilege Escalation (CVE-2021-21389)
2021-08-02 00:00:00
patchstack
patchstack
WordPress BuddyPress plugin <= 7.2.0 - Privilege Escalation vulnerability
2021-03-17 00:00:00
github
github
BuddyPress privilege escalation via REST API
2021-10-06 17:46:55
cve
cve
CVE-2021-21389
2021-03-26 21:15:13
openvas
openvas
WordPress BuddyPress Plugin 5.0.0 - 7.2.0 Privilege Escalation Vulnerability
2021-03-30 00:00:00
veracode
veracode
Privilege Escalation
2021-10-07 03:00:43
nuclei
nuclei
BuddyPress REST API <7.2.1 - Privilege Escalation/Remote Code Execution
2021-06-21 05:33:14
nvd
nvd
CVE-2021-21389
2021-03-26 21:15:13