Description
WordPress Plugin BuddyPress is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin BuddyPress version 5.1.1 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 5.1.2 or latest
References
Related Vulnerabilities
Joomla! Core 1.0.x Multiple Vulnerabilities (1.0.0 - 1.0.7)
Django Improper Input Validation Vulnerability (CVE-2014-0480)
WordPress Plugin NextScripts:Social Networks Auto-Poster Security Bypass (4.3.17)
EspoCRM Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2019-14351)
WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors SQL Injection (2.0.2)