2024-06-04 06:00:02
WPScan
PUBLISHED
The buddyboss-platform WordPress plugin before 2.6.0 contains an IDOR vulnerability that allows a user to like a private post by manipulating the ID included in the request