Lucene search
K

472 matches found

CVE
CVE
added 2018/06/04 1:0 p.m.85 views

CVE-2018-11709

Summary: CVE-2018-11709 affects the WordPress WordPress wpForo Forum plugin (versions

6.1CVSS6AI score0.0363EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2018/06/04 1:0 p.m.21 views

CVE-2018-11709

wpforogetrequesturi in wpf-includes/functions.php in the wpForo Forum plugin before 1.4.12 for WordPress allows Unauthenticated Reflected Cross-Site Scripting XSS via the URI...

6.1AI score0.0363EPSS
Exploits1References3
wpexploit
wpexploit
added 2018/06/01 12:0 a.m.20 views

wpForo Forum <= 1.4.11 - Unauthenticated Reflected Cross-Site Scripting (XSS)

Version 1.4.11, and below, of the wpForo Forum WordPress Plugin were found to be vulnerable to Reflected Cross-Site Scripting XSS. The vulnerability was due to the Plugin using the $SERVER'REQUESTURI' PHP variable to create a URL string that was later output within HTML without any output encodin...

4.3CVSS6.2AI score0.0363EPSS
Exploits1References1
Patchstack
Patchstack
added 2018/05/30 12:0 a.m.22 views

WordPress wpForo Forum plugin <=1.4.9 - Unauthenticated SQL Injection (SQLi) vulnerability

Unauthenticated SQL Injection via a search with the /forum/ wpfo parameter found by cate4cafe in WordPress wpForo Forum plugin versions =1.4.9. Solution Update the WordPress wpForo Forum plugin to the latest available version at least 1.4.11...

9.8CVSS4.2AI score0.0165EPSS
Exploits2References1Affected Software1
CNVD
CNVD
added 2018/05/29 12:0 a.m.6 views

wpForo SQL Injection Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site. wpForo plugin is used in one of the forum plugin. A SQL injection vulnerability exists in WordPress wpForo plugin...

9.8CVSS7.9AI score0.0165EPSS
Exploits2References1
OSV
OSV
added 2018/05/28 2:29 p.m.4 views

CVE-2018-11515

The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter...

9.8CVSS5.8AI score0.0165EPSS
Exploits2References2
Prion
Prion
added 2018/05/28 2:29 p.m.15 views

Sql injection

The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter...

5CVSS9.8AI score0.0165EPSS
Exploits2References2Affected Software1
NVD
NVD
added 2018/05/28 2:29 p.m.21 views

CVE-2018-11515

The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter...

9.8CVSS9.9AI score0.0165EPSS
Exploits2References2
Cvelist
Cvelist
added 2018/05/28 2:0 p.m.17 views

CVE-2018-11515

The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter...

9.9AI score0.0165EPSS
Exploits2References2
CVE
CVE
added 2018/05/28 2:0 p.m.45 views

CVE-2018-11515

The CVE-2018-11515 entry concerns the WordPress wpForo Forum plugin. Affected versions are

9.8CVSS9.9AI score0.0165EPSS
Exploits2References2Affected Software1
WPVulnDB
WPVulnDB
added 2018/05/27 12:0 a.m.15 views

wpForo Forum <= 1.4.9 - Unauthenticated SQL Injection

The wpForo Forum WordPress plugin was affected by an Unauthenticated SQL Injection security vulnerability. PoC http://www.example.com/index.php/community/?wpfd=0=relevancy=desc%2cselectfromselectsleep20a=fff=entire-posts...

5CVSS0.7AI score0.0165EPSS
Exploits2References3Affected Software1
wpexploit
wpexploit
added 2018/05/27 12:0 a.m.27 views

wpForo Forum <= 1.4.9 - Unauthenticated SQL Injection

The wpForo Forum WordPress plugin was affected by an Unauthenticated SQL Injection security vulnerability. http://www.example.com/index.php/community/?wpfd=0&wpfob=relevancy&wpfo=desc%2cselectfromselectsleep20a&wpfs=fff&wpfin=entire-posts...

5CVSS2.4AI score0.0165EPSS
Exploits2References3
Rows per page
Query Builder