WordPress Plugin Vulnerabilities

wpForo Forum < 2.4.2 - Subscriber+ Arbitrary File Read

Description

The plugin is vulnerable to arbitrary file read due to insufficient input validation in the 'update' method of the 'Members' class. This makes it possible for authenticated attackers, with subscriber-level privileges or higher, to read arbitrary files on the server.

Affects Plugins

Plugin icon
wpforo
Fixed in 2.4.2

References

CVE
CVE-2025-0764
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/8cd8ffcb-0a24-4e0a-a9f9-23501742715f

Classification

Type
FILE DOWNLOAD
OWASP top 10
A1: Injection
CWE
CWE-552
CVSS
6.5 (medium)

Miscellaneous

Original Researcher
mikemyers
Verified
No
WPVDB ID
b0fc799d-dbc4-44fb-b968-8eb4a5d56b69

Timeline

Publicly Published
2025-02-27 (about 1 year ago)
Added
2025-03-06 (about 1 year ago)
Last Updated
2025-03-06 (about 1 year ago)

Other

Published
Title
Published
2021-04-14
Title
Plus Addons for Elementor < 2.0.7 - Contributor+ Arbitrary File Access
Published
2026-03-20
Title
JetFormBuilder < 3.5.6.3 - Unauthenticated Arbitrary File Read via Media Field
Published
2025-11-20
Title
Import WP – Export and Import CSV and XML files to WordPress < 2.14.18 - Unauthenticated Information Exposure
Published
2022-01-06
Title
RVM - Responsive Vector Maps < 6.4.2 - Subscriber+ Arbitrary File Read
Published
2023-01-31
Title
Correos Oficial < 1.3.0.3 - Unauthenticated Arbitrary File Download