📦 Asgaros Forum

by Asgaros

🔍 What is Asgaros Forum?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2023-5604

CRITICAL CVSS 9.8 Nov 27, 2023

The Asgaros Forum WordPress plugin before version 2.7.1 allows forum administrators (who may not have full WordPress admin privileges) to configure insecure file upload settings. This could enable una...

CVE-2021-24827

CRITICAL CVSS 9.8 Nov 8, 2021

CVE-2021-24827 is an unauthenticated SQL injection vulnerability in the Asgaros Forum WordPress plugin. Attackers can exploit this to execute arbitrary SQL commands on affected WordPress sites, potent...

CVE-2024-22284

HIGH CVSS 8.7 Jan 24, 2024

This CVE describes a PHP object injection vulnerability in the Asgaros Forum WordPress plugin due to insecure deserialization of untrusted data. Attackers can exploit this to execute arbitrary code on...

CVE-2022-0411

HIGH CVSS 8.8 Feb 28, 2022

This vulnerability allows authenticated users to perform SQL injection attacks in Asgaros Forum WordPress plugin versions before 2.0.0. Attackers can manipulate database queries by exploiting unsaniti...