CVE-2023-5604
The CVE-2023-5604 entry corresponds to the Asgaros Forum WordPress plugin prior to version 2.7.1. Several connected sources confirm a root cause where forum administrators (not necessarily WordPress super-admins) can configure insecure upload settings that permit unauthenticated users to upload d...