cleantalk
Vulnerabilities and Security Researches

Activity Plus Reloaded for BuddyPress, CVE-2025-30957

CVE, Research URL

CVE-2025-30957

Home page URL

Security reports for Activity Plus Reloaded for BuddyPress

Application

Activity Plus Reloaded for BuddyPress

Published on
Jun 06, 2025
Research Description
Missing Authorization vulnerability in BuddyDev Activity Plus Reloaded for BuddyPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Activity Plus Reloaded for BuddyPress: from n/a through 1.1.2.
Affected versions
max 1.1.2.
Status
vulnerable
Previous vulnerability researches
Activity Plus Reloaded for BuddyPress (CVE-2025-30957) , Jun 15, 2025
Activity Plus Reloaded for BuddyPress (CVE-2025-62949) , Nov 11, 2025
Activity Plus Reloaded for BuddyPress (CVE-2024-11913) , Jan 25, 2025
New vulnerability
Ultimate Blocks – WordPress Blocks Plugin (CVE-2025-49929) , Nov 11, 2025
URL Shortener Plugin For WordPress (CVE-2025-10740) , Nov 11, 2025
Preserve Code Formatting (CVE-2025-49386) , Nov 11, 2025
External Login (CVE-2025-11177) , Nov 11, 2025
External Login (CVE-2025-11196) , Nov 11, 2025