CVE-2026-28556 | gVectors wpForo Forum up to 2.4.15 topic_move/topic_merge/topic_split authorization

Inserito da Angelo Barbosa | Mar 1, 2026 | CVE

A vulnerability was found in gVectors wpForo Forum up to 2.4.15. It has been rated as critical. This vulnerability affects the function topic_move/topic_merge/topic_split. Performing a manipulation results in missing authorization.

This vulnerability is known as CVE-2026-28556. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-28556 | gVectors wpForo Forum up to 2.4.15 topic_move/topic_merge/topic_split authorization

Post correlati

CVE-2024-46466 | ZONECENTRAL up to 2021.2/2024.3 on Windows Privilege Escalation

CVE-2025-13437 | Google zx 8.8.4 Working Directory src/cli.ts linkNodeModules name resolution

CVE-2024-2838 | WPC Composite Products for WooCommerce Plugin up to 7.2.7 on WordPress cross site scripting

CVE-2022-4969 | bwoodsend rockhopper up to 0.1.2 Binary Parser ragged_array.c count_rows raw buffer overflow