WordPress security: Critical flaw fixed in bbPress forum plugin


Adam Bannister

02 June 2020 at 15:25 UTC

Updated: 02 June 2020 at 16:04 UTC

More than 300,000 sites at risk from exploit that could grant attackers full control of forums

Developers behind bbPress, a popular WordPress forum plugin, have patched a critical security vulnerability that could lead to unauthenticated privilege escalation.

Attackers who exploit the logic bug could grant themselves authorization to delete forum activities, import or export forum users, and create new forum moderators,…


More Info

About mblog.my

Check Also

Goodbye, ManageWP.org; Hello, WP Content – WordPress Tavern

Yesterday, Iain Poulson and Ashley Rich launched community-curated, news-sharing site WP Content. The launch comes …