Description

WordPress Plugin BuddyPress is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions. WordPress Plugin BuddyPress version 2.3.4 is vulnerable; prior versions are also affected.

Remediation

Update to plugin version 2.3.5, 2.0.4, 2.1.2, 2.2.4 or latest

References

Related Vulnerabilities