Description
WordPress Plugin BP Group Documents is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently edit any document. WordPress Plugin BP Group Documents version 1.10 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.11 or latest
References
Related Vulnerabilities
MySQL CVE-2019-2539 Vulnerability (CVE-2019-2539)
WordPress Plugin Schreikasten SQL Injection (0.14.18)
WordPress Plugin Vertical SlideShow 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin WolfNet IDX for WordPress Multiple Unspecified Vulnerabilities (1.14.7)
WordPress Ultimate Member Plugin Other Vulnerability (CVE-2022-3383)