wpForo Forum
Moderate fix1 remedy
cpe:2.3:a:gvectors:wpforo_forum:*:*:*:*:wordpress:*:*
Moderate fix1 remedy
- <= 3.0.5
wpForo Forum Arbitrary File Deletion Vulnerability in WordPress
Vulnerability
Patched
A vulnerability allowing arbitrary file deletion has been identified in the wpForo Forum plugin for WordPress, affecting versions through 3.0.5. This vulnerability arises from two main issues: first, the Members::update() method fails to properly validate file-type custom profile fields, enabling authenticated users to input arbitrary file paths instead of legitimate upload locations. Second, the wpforo_fix_upload_dir() function, used in ucf_file_delete(), only sanitizes paths that conform to a specific pattern, leaving room for exploitation. As a result, authenticated attackers with subscriber-level access or higher can delete arbitrary files from the server. This could lead to remote code execution if a critical file, such as wp-config.php, is removed.
Impact
Exploitation of this vulnerability allows authenticated users to delete arbitrary files on the server, which could lead to remote code execution if a sensitive file is targeted.
Remediation
Users are advised to update the wpForo Forum plugin to version 3.0.6 or a newer patched version.
Added: Apr 20, 2026, 7:25 PM
Updated: Apr 20, 2026, 7:25 PM
Vulnerability Rating
Custom Algorithm
spread
5.2impact
2.5exploitability
5.7remediation
7.7relevance
6.3threat
3.2urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.