[buddypress-trac] [BuddyPress] #4888: Security Risk: Insecurity of private groups

buddypress-trac noreply at wordpress.org
Tue Mar 19 17:44:43 UTC 2013

#4888: Security Risk: Insecurity of private groups
 Reporter:  douglance     |      Owner:
     Type:  defect (bug)  |     Status:  new
 Priority:  normal        |  Milestone:  Awaiting Review
Component:  Groups        |    Version:  1.7
 Severity:  critical      |   Keywords:  needs-patch needs-testing
 An anonymous person has hacked into my private groups.

 The content in these groups is sensitive information.

 I need a stronger form of security for my groups.

 BP should notify users that private groups are not, in fact, private.

 Also, if you can please alert me to known hacks and solutions for those
 hacks. It is greatly appreciated.

Ticket URL: <https://buddypress.trac.wordpress.org/ticket/4888>
BuddyPress <http://buddypress.org/>

More information about the buddypress-trac mailing list