Buddypress Woocommerce My Account Integration

buddypress_woocommerce_my_account_integration

Vendor: Themekraft • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-1780 1Themekraft 1Buddypress Woocommerce My Account Integration May 26, 2025 Mar 1, 2025 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wc4bp_delete_page() function in all ve...Show more The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wc4bp_delete_page() function in all versions up to, and including, 3.4.25. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update the plugins page setting.Show less
CVE-2024-13358 1Themekraft 1Buddypress Woocommerce My Account Integration May 26, 2025 Mar 1, 2025 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wc4bp_delete_page() function in all ve...Show more The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wc4bp_delete_page() function in all versions up to, and including, 3.4.24. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update the plugins page setting.Show less
CVE-2024-32603 1Themekraft 1Buddypress Woocommerce My Account Integration Apr 28, 2026 Apr 18, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Deserialization of Untrusted Data vulnerability in ThemeKraft WooBuddy.This issue affects WooBuddy: from n/a through 3.4.20.