Primary

Context

Asgaros Forum Authentication Bypass Vulnerability Allowing Identity Spoofing

Vulnerability

Patched

An authentication bypass vulnerability allowing identity spoofing has been identified in the Asgaros Forum plugin for WordPress, affecting versions through 3.0.0. This vulnerability arises from a flaw that allows certain authentication restrictions to be bypassed, potentially leading to unauthorized identity representation.

Impact

Exploiting this vulnerability could allow an attacker to impersonate another user, potentially leading to unauthorized actions being performed on behalf of that user.

Remediation

Users of the Asgaros Forum WordPress plugin should update to version 3.1.0 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

1.3

exploitability

5.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

1.3

exploitability

5.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Asgaros Forum Authentication Bypass Vulnerability Allowing Identity Spoofing

Vulnerability

Impact

Remediation

Affected Products

Asgaros Asgaros Forum

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating