CVE-2025-66070 | Tomdever wpForo Forum Plugin up to 2.4.10 on WordPress authorization

December 18, 2025 Yanac

A vulnerability described as critical has been identified in Tomdever wpForo Forum Plugin up to 2.4.10 on WordPress. This affects an unknown part. Such manipulation leads to missing authorization.

This vulnerability is listed as CVE-2025-66070. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More

CVE-2025-64375 | Mahmudul Hasan Arif WP Social Ninja Plugin up to 3.20.1 on WordPress authorization
CVE-2025-64268 | Arraytics Timetics Plugin up to 1.0.44 on WordPress authorization