[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fg9f-IxyA5EtUfSZTf7NuxaMWjxUuFinm2_jEEBtyp7Q":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2022-40205","wpforo-forum-insecure-direct-object-reference-to-forum-status-change","wpForo Forum \u003C= 2.0.5 - Insecure Direct Object Reference to Forum Status Change","The wpForo Forum plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to, and including, 2.0.5. This makes it possible for authenticated attackers, with subscriber-level access or higher, to mark any forum post as solved\u002Funsolved.","wpforo",null,"\u003C=2.0.5","2.0.6","medium",5.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:L","Authorization Bypass Through User-Controlled Key","2022-09-26 09:03:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fee78642c-ad2a-4012-94e8-e01f71863791?source=api-prod",483]