User Privilege Escalation in BuddyPress Docs Plugin

User Privilege Escalation in BuddyPress Docs Plugin

CVE-2017-6954 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

An issue was discovered in includes/component.php in the BuddyPress Docs plugin before 1.9.3 for WordPress. It is possible for authenticated users to edit documents of other users without proper permissions.

Learn more about our Wordpress Pen Testing.