Vulnerability Details CVE-2015-9455
The buddypress-activity-plus plugin before 1.6.2 for WordPress has CSRF with resultant directory traversal via the wp-admin/admin-ajax.php bpfb_photos[] parameter in a bpfb_remove_temp_images action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 27.6%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 7.8
References
- https://security.dxw.com/advisories/csrf-and-arbitrary-file-deletion-in-buddypress-activity-plus-1-5/
- https://wordpress.org/plugins/buddypress-activity-plus/#developers
- https://security.dxw.com/advisories/csrf-and-arbitrary-file-deletion-in-buddypress-activity-plus-1-5/
- https://wordpress.org/plugins/buddypress-activity-plus/#developers
Products affected by CVE-2015-9455
-
cpe:2.3:a:incsub:buddypress-activity-plus:-
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.0
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.0.1
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.0.2
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.1
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.1.1
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.1.2
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.2
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.2.1
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.3
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.3.1
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.4
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.4.1
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.5
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.6
-
cpe:2.3:a:incsub:buddypress-activity-plus:1.6.1