Description
WordPress Plugin BuddyPress Docs is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently edit certain Docs. WordPress Plugin BuddyPress Docs version 1.9.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.9.3 or latest
References
Related Vulnerabilities
WordPress Plugin Event List Cross-Site Scripting (0.7.9)
WordPress Plugin Copy or Move Comments Multiple Vulnerabilities (1.0.0)
WordPress Plugin WP Courses LMS Cross-Site Scripting (2.0.43)
WordPress Plugin Contact Form Generator Multiple Cross-Site Request Forgery Vulnerabilities (2.1.86)
WordPress Plugin SAML SP Single Sign On-SSO login Unspecified Vulnerability (4.8.70)