CVE-2017-6954

Name of the Vulnerable Software and Affected Versions BuddyPress Docs plugin versions prior to 1.9.3

Description The issue allows authenticated users to edit documents of other users without proper permissions. This is due to a problem in the includes/component.php file of the BuddyPress Docs plugin for WordPress.

Recommendations For versions prior to 1.9.3, update to version 1.9.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the document editing feature to prevent unauthorized modifications until the update is applied.