BuddyPress
BuddyPress
Developer
14.4.0
Latest version
100,000
Installations
No date
Last updated
Vulnerability history
0 present
14 fixed
6 Mitigation rules
- Broken Access Control vulnerability<= 14.3.4Sep 27, 2025
- Authenticated (Subscriber+) Directory Traversal vulnerability<= 14.1.0Oct 24, 2024
- Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability<= 12.4.0May 5, 2024
- Cross Site Scripting (XSS) vulnerability<= 11.3.1Dec 26, 2023
- Privilege Escalation vulnerability<= 7.2.0Mar 17, 2021
- Excessive user capabilities in possible rich text fields vulnerability<= 6.3.0Nov 29, 2020
- Arbitrary File Deletion<= 2.7.3Dec 23, 2016
- Privilege Escalation<= 2.3.4Nov 12, 2015
- Multiple SQL Injections<= 1.7.1May 15, 2015
- SQL Injection<= 1.2.9May 15, 2015
- Privilege Escalation<= 1.9.1Feb 11, 2014
- XSS<= 1.9.1Feb 7, 2014
- Remote SQL Injection<= 1.5.5Mar 31, 2012
- HTML Injection Vulnerability<= 1.2.10Sep 26, 2011