Insecure direct object references (IDOR) vulnerability in the wpForo Forum plugin <= 2.0.5 on WordPress allows attackers with subscriber or higher user roles to mark any forum post as solved/unsolved.
References
Link | Resource |
---|---|
https://patchstack.com/database/vulnerability/wpforo/wordpress-wpforo-forum-plugin-2-0-5-insecure-direct-object-references-idor-vulnerability-2?_s_id=cve | Third Party Advisory |
https://wordpress.org/plugins/wpforo/ | Product Release Notes Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Patchstack
Published: 2022-09-26T00:00:00
Updated: 2022-11-08T00:00:00
Reserved: 2022-09-14T00:00:00
Link: CVE-2022-40205
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-11-08T19:15:13.980
Modified: 2022-11-09T13:57:53.390
Link: CVE-2022-40205
JSON object: View
Redhat Information
No data.
CWE