CVE-2024-4886
BuddyBoss Platform < 2.6.0 - Subscriber+ Comment on Private Post via IDOR
Severity Score
4.3
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track
*SSVC
Descriptions
The contains an IDOR vulnerability that allows a user to comment on a private post by manipulating the ID included in the request
Contiene una vulnerabilidad IDOR que permite a un usuario comentar una publicaciĆ³n privada manipulando la ID incluida en la solicitud.
The Buddyboss Platform plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.5.91 via the new_activity_comment AJAX action due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to make comments on private posts.
*Credits:
Faris Krivic, WPScan
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-05-14 CVE Reserved
- 2024-05-15 CVE Published
- 2025-03-27 CVE Updated
- 2025-03-27 First Exploit
- 2025-04-15 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-639: Authorization Bypass Through User-Controlled Key
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://wpscan.com/vulnerability/76e8591f-120c-4cd7-b9a2-79f8d4d98aa8 | 2025-03-27 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Buddyboss Search vendor "Buddyboss" | Buddyboss Platform Search vendor "Buddyboss" for product "Buddyboss Platform" | < 2.6.00 Search vendor "Buddyboss" for product "Buddyboss Platform" and version " < 2.6.00" | wordpress |
Affected
| ||||||