Tomdever Wpforo Forum vulnerabilities
22 known vulnerabilities affecting tomdever/wpforo_forum.
Total CVEs
22
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL4HIGH12MEDIUM6
Vulnerabilities
Page 2 of 2
CVE-2025-58597P4MEDIUMCVSS 4.3≤ 2.4.62025-09-03
CVE-2025-58597 [MEDIUM] CWE-639 CVE-2025-58597: Authorization Bypass Through User-Controlled Key vulnerability in Tomdever wpForo Forum wpforo allow
Authorization Bypass Through User-Controlled Key vulnerability in Tomdever wpForo Forum wpforo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpForo Forum: from n/a through <= 2.4.6.
nvd
CVE-2026-49767CRITICALCVSS 9.8≥ n/a, ≤ 3.1.02026-06-17
CVE-2026-49767 [CRITICAL] CWE-288 WordPress wpForo Forum plugin <= 3.1.0 - Broken Authentication vulnerability
WordPress wpForo Forum plugin <= 3.1.0 - Broken Authentication vulnerability
Unauthenticated Broken Authentication in wpForo Forum <= 3.1.0 versions.
cvelistv5
← Previous2 / 2