Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
buddyboss buddyboss platform vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-4886
The contains an IDOR vulnerability that allows a user to comment on a private post by manipulating the ID included in the request
Buddyboss Buddyboss Platform
312
VMScore
CVE-2021-43334
BuddyBoss Platform up to and including 1.8.0 allows XSS via the Group Name or Group Description field.
Buddyboss Buddyboss
445
VMScore
CVE-2021-44692
BuddyBoss Platform up to and including 1.8.0 allows remote malicious users to obtain the email address of each user. When creating a new user, it generates a Unique ID for their profile. This UID is their private email address with symbols removed and periods replaced with hyphen...
Buddyboss Buddyboss
NA
CVE-2023-32671
A stored XSS vulnerability has been found on BuddyBoss Platform affecting version 2.2.9. This vulnerability allows an malicious user to store a malicious javascript payload via POST request when sending an invitation.
Buddyboss Buddyboss 2.2.9
NA
CVE-2024-4750
The buddyboss-platform WordPress plugin prior to 2.6.0 contains an IDOR vulnerability that allows a user to like a private post by manipulating the ID included in the request
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started