Buddypress Vulnerabilità

Sequenza temporale

Versione

4.6.03
4.6.13
4.6.23
4.6.33
4.6.43

Contromisure

Official Fix12
Temporary Fix0
Workaround0
Unavailable0
Not Defined7

Sfruttabilità

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined17

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network19

Autenticazione

Not Defined0
High1
Low10
None8

Interazione dell'utente

Not Defined0
Required10
None9

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤30
≤41
≤55
≤64
≤75
≤84
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤41
≤56
≤64
≤75
≤83
≤90
≤100

VulDB

≤10
≤20
≤31
≤44
≤55
≤60
≤77
≤82
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤52
≤63
≤71
≤82
≤94
≤100

CNA

≤10
≤20
≤30
≤40
≤51
≤61
≤72
≤81
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k4
<2k10
<5k5
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k17
<2k1
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (89): 1, 1.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, 1.0.5, 1.0.6, 1.0.7, 1.0.8, 1.0.9, 1.0.11, 1.0.12, 1.0.13, 1.0.14, 1.0.15, 1.0.16, 1.0.17, 1.0.18, 1.0.19, 1.0.21, 1.0.22, 1.2, 1.2.1, 1.5, 1.5.1, 1.5.2, 1.5.3, 1.6, 1.6.1, 1.6.2, 1.6.3, 1.9, 1.9.1, 1.9.2, 2.8, 2.8.1, 2.8.2, 2.8.3, 3.0, 3.0.15, 3.1, 3.2, 3.3, 3.4, 3.4.1, 3.4.2, 3.4.3, 3.4.4, 3.4.5, 3.4.6, 3.4.7, 3.4.8, 3.4.9, 3.4.11, 3.4.12, 3.4.13, 3.4.14, 3.4.15, 3.4.16, 3.4.17, 3.4.18, 3.4.19, 3.5, 4.6, 4.6.1, 4.6.2, 4.6.3, 4.6.4, 4.6.5, 4.6.6, 4.6.7, 4.6.8, 4.6.9, 4.6.11, 4.6.12, 4.6.13, 4.6.14, 4.6.15, 4.6.16, 4.6.17, 4.6.18, 5.1, 5.1.1, 7.0, 7.1, 7.2, 11.3, 11.3.1

Tipo di software: WordPress Plugin

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
22/04/20246.36.1rtMedia for BuddyPress and bbPress Plugin rtmedia_gallery sql injection$0-$5k$0-$5kNot DefinedNot Defined0.21CVE-2024-3293
22/03/20247.37.1BuddyPress WooCommerce my Account Integration Plugin get_simple_request escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2024-2025
29/12/20235.15.1BuddyPress Plugin cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2023-50880
26/12/20237.57.4rtMedia Plugin/BuddyPress Plugin/bbPress Plugin escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-5931
26/12/20236.76.6rtMedia Plugin/BuddyPress Plugin/bbPress Plugin File Import escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-5939
25/10/20234.44.4BuddyBoss BuddyPress Global Search Plugin cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2023-45755
23/04/20235.85.8Paramveer Singh Activity Reactions for Buddypress Plugin cross site request forgery$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-45074
27/03/20234.34.2Wbcom Designs BuddyPress Activity Social Share Plugin cross site request forgery$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-28694
19/07/20226.05.9Wbcom Designs BuddyPress Group Reviews Plugin escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-2108
02/08/20213.53.4BuddyPress Community Plugin About Me Widget cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-24443

9 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 9 results.

PrecedenteVisione D'insiemeIl prossimo

Do you know our Splunk app?

Download it now for free!