Medium severity4.3NVD Advisory· Published Mar 17, 2017· Updated Jun 17, 2026
CVE-2017-6954
CVE-2017-6954
Description
An issue was discovered in includes/component.php in the BuddyPress Docs plugin before 1.9.3 for WordPress. It is possible for authenticated users to edit documents of other users without proper permissions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
buddypress/buddypressPackagist | < 1.9.3 | 1.9.3 |
Affected products
2Patches
Vulnerability mechanics
References
6- github.com/boonebgorges/buddypress-docs/commit/75293ed4e5f31f04e54689bfe2c647e3e3f5e1a9nvdPatchThird Party AdvisoryWEB
- github.com/advisories/GHSA-9wf6-88x4-6xvjghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-6954ghsaADVISORY
- wordpress.org/plugins/buddypress-docs/changelog/nvdRelease NotesThird Party Advisory
- www.securityfocus.com/bid/97238nvdWEB
- wordpress.org/plugins/buddypress-docs/changelogghsaWEB
News mentions
0No linked articles in our index yet.