Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Buddypress\-Activity\-Plus
(Incsub)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 1 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2019-10-07 | CVE-2015-9455 | The buddypress-activity-plus plugin before 1.6.2 for WordPress has CSRF with resultant directory traversal via the wp-admin/admin-ajax.php bpfb_photos[] parameter in a bpfb_remove_temp_images action. | Buddypress\-Activity\-Plus | N/A |