NuytsTech Security

CVE-2017-6954

by ·

An issue was discovered in includes/component.php in the BuddyPress Docs plugin before 1.9.3 for WordPress. It is possible for authenticated users to edit documents of other users without proper permissions.

Date published : 2017-03-17

http://www.securityfocus.com/bid/97238

https://github.com/boonebgorges/buddypress-docs/commit/75293ed4e5f31f04e54689bfe2c647e3e3f5e1a9

Tags: