exploitDog

GHSA-h646-fcwc-rq3q

Опубликовано: 27 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

The BuddyPress Docs WordPress plugin before 2.2.5 lacks proper access controls and allows a logged in user to view and download files belonging to another user

The BuddyPress Docs WordPress plugin before 2.2.5 lacks proper access controls and allows a logged in user to view and download files belonging to another user

Ссылки

EPSS

Процентиль: 11%

0.00038

Низкий

4.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2025-5526

CVSS3: 4.3

nvd

8 месяцев назад

The BuddyPress Docs WordPress plugin before 2.2.5 lacks proper access controls and allows a logged in user to view and download files belonging to another user

EPSS

Процентиль: 11%

0.00038

Низкий

4.3 Medium

CVSS3

CVE ID