2.4.1

DATE	CVE	VULNERABILITY TITLE	RISK
2025-02-28	CVE-2025-0764	Improper Input Validation vulnerability in Gvectors Wpforo Forum The wpForo Forum plugin for WordPress is vulnerable to arbitrary file read due to insufficient input validation in the 'update' method of the 'Members' class in all versions up to, and including, 2.4.1. network low complexity gvectors CWE-20	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.