CVE-2026-4666 | tomdever wpForo Forum Plugin up to 2.4.16 on WordPress classes/Posts.php posts::edit post authorization

A vulnerability classified as critical has been found in tomdever wpForo Forum Plugin up to 2.4.16 on WordPress. This vulnerability affects the function posts::edit of the file classes/Posts.php. The manipulation of the argument post leads to missing authorization.

This vulnerability is referenced as CVE-2026-4666. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More