Vulnerabilities > Asgaros > Asgaros Forum > 2.5.0

DATE CVE VULNERABILITY TITLE RISK
2024-04-15 CVE-2024-32440 Unspecified vulnerability in Asgaros Forum
Cross-Site Request Forgery (CSRF) vulnerability in Thomas Belser Asgaros Forum.This issue affects Asgaros Forum: from n/a through 2.8.0.
network
low complexity
asgaros
8.8
8.8
2024-01-24 CVE-2024-22284 Unspecified vulnerability in Asgaros Forum
Deserialization of Untrusted Data vulnerability in Thomas Belser Asgaros Forum.This issue affects Asgaros Forum: from n/a through 2.7.2.
network
low complexity
asgaros
critical
 9.8
9.8
2023-11-27 CVE-2023-5604 Unrestricted Upload of File with Dangerous Type vulnerability in Asgaros Forum
The Asgaros Forum WordPress plugin before 2.7.1 allows forum administrators, who may not be WordPress (super-)administrators, to set insecure configuration that allows unauthenticated users to upload dangerous files (e.g.
network
low complexity
asgaros CWE-434
critical
 9.8
9.8