CVE-2025-62022 | BuddyPress Plugin up to 14.3.4 on WordPress authorization

October 22, 2025 Yanac

A vulnerability classified as critical has been found in BuddyPress Plugin up to 14.3.4 on WordPress. Impacted is an unknown function. This manipulation causes missing authorization.

This vulnerability is tracked as CVE-2025-62022. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-62007 | bPlugins Voice Feedback Plugin up to 1.0.3 on WordPress privileges assignment
CVE-2025-60234 | designthemes Single Property Plugin up to 2.8 on WordPress deserialization