WordPress Asgaros Forum plugin <= 3.2.1 - Cross-Site Request Forgery to Subscription Settings Update vulnerability
Don't mute a vulnerability until you've confirmed your current version has a fix, or the issue doesn't affect your site.
- Type:
- Cross Site Request Forgery (CSRF)
- Score:
- 4.3
References
PatchStack
CVE
Timeline
- Publicly Published
- 2025-11-12
- Created
- 2025-11-12
WordPress Asgaros Forum plugin <= 3.1.0 - Unauthenticated SQL Injection vulnerability
Don't mute a vulnerability until you've confirmed your current version has a fix, or the issue doesn't affect your site.
- Type:
- SQL Injection
- Score:
- 9.3
References
PatchStack
CVE
Timeline
- Publicly Published
- 2025-11-10
- Created
- 2025-11-10
WordPress Asgaros Forum plugin <= 3.2.1 - Cross Site Scripting (XSS) vulnerability
Don't mute a vulnerability until you've confirmed your current version has a fix, or the issue doesn't affect your site.
- Type:
- Cross Site Scripting (XSS)
- Score:
- 6.5
References
PatchStack
CVE
Timeline
- Publicly Published
- 2025-04-16
- Created
- 2025-04-16