Vulnerabilities > Gvectors

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-09	CVE-2023-2249	Inclusion of Functionality from Untrusted Control Sphere vulnerability in Gvectors Wpforo Forum The wpForo Forum plugin for WordPress is vulnerable to Local File Include, Server-Side Request Forgery, and PHAR Deserialization in versions up to, and including, 2.1.7. network low complexity gvectors CWE-829	8.8
2023-05-28	CVE-2023-33216	Unspecified vulnerability in Gvectors Woodiscuz - Woocommerce Comments Auth. network low complexity gvectors	4.8
2022-11-18	CVE-2022-43492	Authorization Bypass Through User-Controlled Key vulnerability in Gvectors Wpdiscuz 7.4.2 Auth. network low complexity gvectors CWE-639	8.8
2022-11-17	CVE-2022-40192	Cross-Site Request Forgery (CSRF) vulnerability in Gvectors Wpforo Forum Cross-Site Request Forgery (CSRF) vulnerability in wpForo Forum plugin <= 2.0.9 on WordPress. network low complexity gvectors CWE-352	8.8
2022-11-17	CVE-2022-40200	Unrestricted Upload of File with Dangerous Type vulnerability in Gvectors Wpforo Forum Auth. network low complexity gvectors CWE-434	8.8
2022-11-08	CVE-2022-40205	Authorization Bypass Through User-Controlled Key vulnerability in Gvectors Wpforo Forum Insecure direct object references (IDOR) vulnerability in the wpForo Forum plugin <= 2.0.5 on WordPress allows attackers with subscriber or higher user roles to mark any forum post as solved/unsolved. network low complexity gvectors CWE-639	4.3
2022-11-08	CVE-2022-40206	Authorization Bypass Through User-Controlled Key vulnerability in Gvectors Wpforo Forum Insecure direct object references (IDOR) vulnerability in the wpForo Forum plugin <= 2.0.5 on WordPress allows attackers with subscriber or higher user roles to mark any forum post as private/public. network low complexity gvectors CWE-639	4.3
2022-11-08	CVE-2022-40632	Cross-Site Request Forgery (CSRF) vulnerability in Gvectors Wpforo Forum Cross-Site Request Forgery (CSRF) vulnerability in gVectors Team wpForo Forum plugin <= 2.0.5 on WordPress leading to topic deletion. network low complexity gvectors CWE-352	5.4
2022-09-09	CVE-2022-38144	Unspecified vulnerability in Gvectors Wpforo Forum Cross-Site Request Forgery (CSRF) vulnerability in gVectors Team wpForo Forum plugin <= 2.0.5 at WordPress. network low complexity gvectors	8.8
2022-02-21	CVE-2022-23984	Information Exposure vulnerability in Gvectors Wpdiscuz Sensitive information disclosure discovered in wpDiscuz WordPress plugin (versions <= 7.3.11). network low complexity gvectors CWE-200	7.5

Vulnerabilities > Gvectors {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Gvectors"}]}

Vulnerabilities > Gvectors