Description
WordPress Plugin BuddyPress Docs is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently edit certain Docs. WordPress Plugin BuddyPress Docs version 1.9.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.9.3 or latest
References
Related Vulnerabilities
Joomla! Core 3.x.x Cross-Site Request Forgery (3.2.0 - 3.9.12)
WordPress Plugin WP-Live Chat by 3CX Cross-Site Request Forgery (8.0.37)
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9775)
WordPress Plugin Easy Social Feed-Social Photos Gallery-Post Feed-Like Box Security Bypass (6.3.3)