| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-58344 | Carbon Forum 5.9.0 Persistent XSS via Forum Name Field | 94Cb | Carbon Forum | Medium | 6.4 | 2026-04-22 14:57:06 | Deep Dive |
| CVE-2026-6248 | wpForo Forum <= 3.0.5 - Authenticated (Subscriber+) Arbitrary File Deletion via Custom Profile Field File Path | tomdever | wpForo Forum | High | 8.1 | 2026-04-20 18:31:33 | Deep Dive |
| CVE-2026-4666 | wpForo Forum <= 2.4.16 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Forum Post Modification via 'guestposting' Parameter | tomdever | wpForo Forum | Medium | 6.5 | 2026-04-17 02:25:05 | Deep Dive |
| CVE-2026-5809 | wpForo Forum <= 3.0.2 - Authenticated (Subscriber+) Arbitrary File Deletion via 'data[body][fileurl]' Parameter | tomdever | wpForo Forum | High | 7.1 | 2026-04-11 07:40:16 | Deep Dive |
| CVE-2026-6031 | code-projects Simple IT Discussion Forum add-category-function.php sql injection | code-projects | Simple IT Discussion Forum | High | 7.3 | 2026-04-10 07:00:26 | Deep Dive |
| CVE-2026-6004 | code-projects Simple IT Discussion Forum delete-category.php sql injection | code-projects | Simple IT Discussion Forum | High | 7.3 | 2026-04-10 02:30:24 | Deep Dive |
| CVE-2026-6003 | code-projects Simple IT Discussion Forum user.php cross site scripting | code-projects | Simple IT Discussion Forum | Low | 2.4 | 2026-04-10 02:15:14 | Deep Dive |
| CVE-2026-5985 | code-projects Simple IT Discussion Forum crud.php sql injection | code-projects | Simple IT Discussion Forum | High | 7.3 | 2026-04-09 22:15:14 | Deep Dive |
| CVE-2026-5961 | code-projects Simple IT Discussion Forum topic-details.php sql injection | code-projects | Simple IT Discussion Forum | High | 7.3 | 2026-04-09 16:15:13 | Deep Dive |
| CVE-2026-5829 | code-projects Simple IT Discussion Forum content.php sql injection | code-projects | Simple IT Discussion Forum | High | 7.3 | 2026-04-09 01:15:14 | Deep Dive |
| CVE-2026-5828 | code-projects Simple IT Discussion Forum addcomment.php sql injection | code-projects | Simple IT Discussion Forum | High | 7.3 | 2026-04-09 01:00:19 | Deep Dive |
| CVE-2026-5827 | code-projects Simple IT Discussion Forum question-function.php sql injection | code-projects | Simple IT Discussion Forum | High | 7.3 | 2026-04-09 00:45:11 | Deep Dive |
| CVE-2026-5826 | code-projects Simple IT Discussion Forum edit-category.php cross site scripting | code-projects | Simple IT Discussion Forum | Medium | 4.3 | 2026-04-09 00:30:14 | Deep Dive |
| CVE-2026-5672 | code-projects Simple IT Discussion Forum Parameter edit-category.php sql injection | code-projects | Simple IT Discussion Forum | High | 7.3 | 2026-04-06 17:45:10 | Deep Dive |
| CVE-2026-3666 | wpForo Forum <= 2.4.16 - Authenticated (Subscriber+) Arbitrary File Deletion via Post Body | tomdever | wpForo Forum | High | 8.8 | 2026-04-04 11:16:17 | Deep Dive |
| CVE-2026-28562 | wpForo Forum 2.4.14 SQL Injection via Topics ORDER BY Parameter | gVectors Team | wpForo Forum | High | 8.2 | 2026-02-28 21:47:42 | Deep Dive |
| CVE-2026-28561 | wpForo Forum 2.4.14 Stored XSS via Unescaped Forum Description in Templates | gVectors Team | wpForo Forum | Medium | 5.5 | 2026-02-28 21:47:41 | Deep Dive |
| CVE-2026-28560 | wpForo Forum 2.4.14 Stored XSS via Unsafe JSON Encoding in Inline Script | gVectors Team | wpForo Forum | Medium | 5.5 | 2026-02-28 21:47:40 | Deep Dive |
| CVE-2026-28559 | wpForo Forum 2.4.14 Information Disclosure via Global RSS Feed | gVectors Team | wpForo Forum | Medium | 5.3 | 2026-02-28 21:47:39 | Deep Dive |
| CVE-2026-28558 | wpForo Forum 2.4.14 Stored XSS via SVG Avatar File Upload | gVectors Team | wpForo Forum | Medium | 6.4 | 2026-02-28 21:47:38 | Deep Dive |