CVE-2026-5809 | tomdever wpForo Forum Plugin up to 3.0.2 on WordPress topic_add body file inclusion

Inserito da Angelo Barbosa | Apr 11, 2026 | CVE

A vulnerability was found in tomdever wpForo Forum Plugin up to 3.0.2 on WordPress. It has been rated as critical. The impacted element is the function topic_add. Performing a manipulation of the argument body results in file inclusion.

This vulnerability is cataloged as CVE-2026-5809. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is advised.

CVE-2026-5809 | tomdever wpForo Forum Plugin up to 3.0.2 on WordPress topic_add body file inclusion

Post correlati

CVE-2024-33002 | SAP S4 HANA Document Service Handler for DPS cross site scripting

CVE-2025-56406 | mcp-neo4j 0.3.0 SSE Service information disclosure

CVE-2024-3877 | Tenda F1202 1.2.0.20(408) /goform/fromqossetting qos stack-based overflow

CVE-2025-15393 | Kohana KodiCMS up to 13.82.135 Layout API Endpoint file.php save content code injection