Update the WordPress BP Better Messages plugin to the latest available version (at least 1.9.10.71).
Ananda Dhakal discovered and reported this Broken Access Control vulnerability in WordPress BP Better Messages Plugin. This vulnerability has been fixed in version 1.9.10.71.
ServerSide Request Forgery (SSRF) vulnerability
21.10.2022
Denial Of Service (DoS) vulnerability
22.08.2022
Toggle The Debug Mode via CrossSite Request Forgery (CSRF) vulnerability
28.02.2022
Sensitive Information Disclosure vulnerability
28.02.2022
CrossSite Request Forgery (CSRF) vulnerability
18.01.2022