Vulnerabilities > Buddypress > Buddypress > 5.1.0

DATE CVE VULNERABILITY TITLE RISK
2023-12-29 CVE-2023-50880 Cross-site Scripting vulnerability in Buddypress
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in The BuddyPress Community BuddyPress allows Stored XSS.This issue affects BuddyPress: from n/a through 11.3.1.
network
low complexity
buddypress CWE-79
5.4
5.4
2021-03-26 CVE-2021-21389 Incorrect Authorization vulnerability in Buddypress
BuddyPress is an open source WordPress plugin to build a community site.
network
low complexity
buddypress CWE-863
critical
 9.0
9.0