QSearchQSearch

CVE-2026-40767

7.5 HIGH

Unauthenticated Broken Access Control in wpForo Forum < 3.0.2 versions

Published: 2026-06-15 · Last updated: 2026-06-15

Severity and scoring

CVSS
7.5 HIGH
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE
CWE-281

Description

Unauthenticated Broken Access Control in wpForo Forum < 3.0.2 versions.

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2024-47270 Improper preservation of permissions vulnerability in Archiving Push functionality in Synology Surveillance Station before 9.2.2-11575 an... (2.7 LOW)
  • CVE-2026-44832 Snipe-IT is an IT asset/license management system (8.8 HIGH)
  • CVE-2026-24194 NVIDIA Display Driver for Linux contains a vulnerability in a kernel mode layer handler, where a user could cause improper permission han... (7.8 HIGH)
  • CVE-2026-34744 Mantis Bug Tracker (MantisBT) is an open source issue tracker
  • CVE-2026-34600 Joplin is an open source note-taking and to-do application that organises notes and lists into notebooks (5.7 MEDIUM)