← back
CVE-2017-6954

CVE-2017-6954

EPSS 1.1%
An issue was discovered in includes/component.php in the BuddyPress Docs plugin before 1.9.3 for WordPress. It is possible for authenticated users to edit documents of other users without proper permissions.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/boonebgorges/buddypress-docs/commit/75293ed4e5f31f04e54689bfe2c647e3e3f5e1a9https://wordpress.org/plugins/buddypress-docs/changelog/http://www.securityfocus.com/bid/97238