472 matches found
CVE-2018-11709
Summary: CVE-2018-11709 affects the WordPress WordPress wpForo Forum plugin (versions
CVE-2018-11709
wpforogetrequesturi in wpf-includes/functions.php in the wpForo Forum plugin before 1.4.12 for WordPress allows Unauthenticated Reflected Cross-Site Scripting XSS via the URI...
wpForo Forum <= 1.4.11 - Unauthenticated Reflected Cross-Site Scripting (XSS)
Version 1.4.11, and below, of the wpForo Forum WordPress Plugin were found to be vulnerable to Reflected Cross-Site Scripting XSS. The vulnerability was due to the Plugin using the $SERVER'REQUESTURI' PHP variable to create a URL string that was later output within HTML without any output encodin...
WordPress wpForo Forum plugin <=1.4.9 - Unauthenticated SQL Injection (SQLi) vulnerability
Unauthenticated SQL Injection via a search with the /forum/ wpfo parameter found by cate4cafe in WordPress wpForo Forum plugin versions =1.4.9. Solution Update the WordPress wpForo Forum plugin to the latest available version at least 1.4.11...
wpForo SQL Injection Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site. wpForo plugin is used in one of the forum plugin. A SQL injection vulnerability exists in WordPress wpForo plugin...
CVE-2018-11515
The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter...
Sql injection
The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter...
CVE-2018-11515
The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter...
CVE-2018-11515
The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter...
CVE-2018-11515
The CVE-2018-11515 entry concerns the WordPress wpForo Forum plugin. Affected versions are
wpForo Forum <= 1.4.9 - Unauthenticated SQL Injection
The wpForo Forum WordPress plugin was affected by an Unauthenticated SQL Injection security vulnerability. PoC http://www.example.com/index.php/community/?wpfd=0=relevancy=desc%2cselectfromselectsleep20a=fff=entire-posts...
wpForo Forum <= 1.4.9 - Unauthenticated SQL Injection
The wpForo Forum WordPress plugin was affected by an Unauthenticated SQL Injection security vulnerability. http://www.example.com/index.php/community/?wpfd=0&wpfob=relevancy&wpfo=desc%2cselectfromselectsleep20a&wpfs=fff&wpfin=entire-posts...