[HIGH] BuddyPress privilege escalation via REST API

PKSA-d6nw-k2gz-bmyj CVE-2021-21389 GHSA-m6j4-8r7p-wpp3

Affected package: buddypress/buddypress

Affected version: >=5.0.0,<7.2.1

Reported by:
GitHub