CVE-2026-42682NVD

Description

Missing Authorization vulnerability in Tomdever wpForo Forum allows Exploiting Incorrectly Configured Access Control Security Levels.

This issue affects wpForo Forum: from n/a through 3.0.6.

Severity Level

CRITICAL (9.1)

Published Date

01/06/2026

Last Modified

01/06/2026

Exploitation Status

????

References

https://patchstack.com/database/wordpress/plugin/wpforo/vulnerability/wordpress-wpforo-forum-plugin-3-0-6-broken-access-control-vulnerability?_s_id=cve