wpForo Forum, CVE-2023-47870

CVE, Research URL: CVE-2023-47870
Home page URL: Security reports for wpForo Forum
Application: wpForo Forum
Published on: Nov 30, 2023
Research Description: Cross-Site Request Forgery (CSRF), Missing Authorization vulnerability in gVectors Team wpForo Forum wpforo allows Cross Site Request Forgery, Accessing Functionality Not Properly Constrained by ACLs leading to forced all users log out.This issue affects wpForo Forum: from n/a through 2.2.6.
Affected versions: Min -, max 2.2.9.
Status: vulnerable