Serious Security Risks posed by use of this Plugin

  • fraughtithrouble

    (@fraughtithrouble)


    3 years, 1 month ago

    Upon certain conditions, for example, editing an activity status in which there is a link, the edit button allows the user to see the html using to make the link and thus reveals possible points of attack on the site.

Viewing 1 replies (of 1 total)
  • Plugin Support BuddyBoss Support

    (@bbwpsupport)

    3 years, 1 month ago

    Thank you for reaching out.

    We have gone through this “BuddyPress Edit Activity” plugin. We have checked that Personal Activity box, basically its developed for the end user can add some content with html tag like any anchor tag, paragraph and color etc. Its working like text editor to make activity text looks more lucarative.

    Also, regarding “This plugin hasn’t been tested with the latest 3 major releases of WordPress.”, we will inform to our BB product team, so that they will test with latest release of WordPress.

    Thank you.

Viewing 1 replies (of 1 total)
  • The topic ‘Serious Security Risks posed by use of this Plugin’ is closed to new replies.