CVE Catalog

CVE-2026-49767

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Summary

There is a vulnerability in wpForo Forum versions up to 3.1.0 related to unauthenticated broken authentication.

Risk Assessment

An attacker may gain access to functions requiring authentication, potentially leading to unauthorized access to user data.

Recommendation

It is recommended to update to the latest version of wpForo Forum to mitigate this vulnerability.

Original NVD description (English source)

Unauthenticated Broken Authentication in wpForo Forum <= 3.1.0 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS