3 matches found
CVE-2023-47870
Cross-Site Request Forgery CSRF, Missing Authorization vulnerability in gVectors Team wpForo Forum wpforo allows Cross Site Request Forgery, Accessing Functionality Not Properly Constrained by ACLs leading to forced all users log out.This issue affects wpForo Forum: from n/a through 2.2.6...
CVE-2023-47870
Cross-Site Request Forgery CSRF, Missing Authorization vulnerability in gVectors Team wpForo Forum wpforo allows Cross Site Request Forgery, Accessing Functionality Not Properly Constrained by ACLs leading to forced all users log out.This issue affects wpForo Forum: from n/a through 2.2.6...
CVE-2023-47870
CVE-2023-47870 describes a CSRF/Missing Authorization flaw in wpForo Forum (WordPress plugin) versions up to 2.2.6, enabling CSRF and ACL-constraint bypass that can force logout of all users. Multiple sources identify wpForo as the affected product and indicate exploitation is not detailed in the...