Buddyboss Platform

Plugin

Set alert

Claim

VDP

Developer

BuddyBoss

Current version

N/A

Installations

N/A

Last updated

N/A

Vulnerability history

1 present

4 patched

Private Comment Exposure via IDOR vulnerability < 2.7.60

5.3

19 May, 2025

Authenticated (Subscriber+) Stored CrossSite Scripting via 'invitee_name' vulnerability <= 2.8.50

6.5

1 May, 2025

Authenticated (Subscriber+) Stored CrossSite Scripting via 'link_title' vulnerability <= 2.7.70

6.5

27 February, 2025

Insecure Direct Object Reference on Like Comment vulnerability < 2.6.0

4.3

4 June, 2024

SQL Injection (SQLi) vulnerability <= 1.7.8

7.4

16 September, 2021

Buddyboss Platform

Developer

Current version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Buddyboss Platform

Developer

Current version

Installations

Last updated

Vulnerability history

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Website security

For plugin devs

For researchers

Resources

Patchstack

Socials

Let us know if we have missed a vulnerability reported elsewhere

reCAPTCHA's verification failed!

Thank you for contributing!