Unauthenticated SQL Injection via a search with the /forum/ wpfo parameter found by cate4cafe in WordPress wpForo Forum plugin (versions <=1.4.9).
Update the WordPress wpForo Forum plugin to the latest available version (at least 1.4.11).
CPE | Name | Operator | Version |
---|---|---|---|
wpforo forum | le | 1.4.9 |