WordPress Plugin Vulnerabilities

wpForo Forum < 2.0.6 - Subscriber+ Forum Post Set as Solved/Unsolved via IDOR

Description

The plugin does not ensure that the forum post marked as solved/unsolved belong to the user making the request, allowing any authenticated users, such as subscriber to mark arbitrary forum post as solved/unsolved

Affects Plugins

Plugin icon
wpforo
Fixed in 2.0.6

References

CVE
CVE-2022-40205

Classification

Type
IDOR
OWASP top 10
A5: Broken Access Control
CWE
CWE-639
CVSS
4.3 (medium)

Miscellaneous

Original Researcher
Dhakal Ananda
Verified
No
WPVDB ID
d1127579-4f9a-4ad2-86fd-5eae6f9c3c7a

Timeline

Publicly Published
2022-09-26 (about 3 years ago)
Added
2022-11-08 (about 3 years ago)
Last Updated
2022-11-08 (about 3 years ago)

Other

Published
Title
Published
2024-07-09
Title
ProfileGrid < 5.9.0 - Authenticated (Subscriber+) Insecure Direct Object Reference
Published
2024-12-02
Title
Client Invoicing by Sprout Invoices < 20.8.1 - Insecure Direct Object Reference
Published
2025-06-23
Title
MDJM Event Management <= 1.7.8.2 - Subscriber+ Privilege Escalation
Published
2025-12-31
Title
Master Addons for Elementor < 2.1.0 - Unauthenticated Insecure Direct Object Reference
Published
2024-03-26
Title
Event Tickets and Registration < 5.8.3 - Improper Authorization to Information Disclosure