CVE-2026-15021 | tomdever wpForo Forum Plugin up to 3.1.1 on WordPress Location Profile Field sanitize_text_field location cross site scripting
A vulnerability was found in tomdever wpForo Forum Plugin up to 3.1.1 on WordPress. It has been rated as problematic. This affects the function sanitize_text_field of the component Location Profile Field. Performing a manipulation of the argument location results in cross site scripting.
This vulnerability is identified as CVE-2026-15021. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More