WordPress security: Critical flaw fixed in bbPress forum plugin


Adam Bannister

02 June 2020 at 15:25 UTC

Updated: 02 June 2020 at 16:04 UTC

More than 300,000 sites at risk from exploit that could grant attackers full control of forums

Developers behind bbPress, a popular WordPress forum plugin, have patched a critical security vulnerability that could lead to unauthenticated privilege escalation.

Attackers who exploit the logic bug could grant themselves authorization to delete forum activities, import or export forum users, and create new forum moderators,…


More Info

About mblog.my

Check Also

Fuxia Scholz First to Pass 100K Reputation Points on WordPress Stack Exchange – WordPress Tavern

Fuxia Scholz, a prolific WordPress Stack Exchange (WPSE) contributor, is the first member to reach …