Security Advisories - buddypress/buddypress - Packagist

buddypress/buddypress Security Advisories (2)

[HIGH] BuddyPress privilege escalation via REST API

PKSA-d6nw-k2gz-bmyj CVE-2021-21389 GHSA-m6j4-8r7p-wpp3

Affected version: >=5.0.0,<7.2.1

Reported by:
GitHub
[HIGH] Private data exposure via REST API in BuddyPress

PKSA-k88z-4w78-43nj CVE-2020-5244 GHSA-3j78-7m59-r7gv

Affected version: <5.1.2

Reported by:
GitHub