Description

WordPress Plugin WooCommerce BuddyPress Integration is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin WooCommerce BuddyPress Integration version 3.2.6.1 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 3.3.0 or latest

References

https://plugins.svn.wordpress.org/wc4bp/trunk/readme.txt

Related Vulnerabilities

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-41866)

Drupal Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-10910)

WordPress Plugin AccessPress Custom Post Type includes Backdoor [Only if downloaded via the vendor website] (1.0.8)

XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-29213)

WordPress Plugin Banner Slider Cross-Site Scripting (1.0)

Severity

High

Tags

Missing Update