Wordfence alert
Quote from SheWhoBuilds on May 9, 2025, 1:46 amis anyone else getting this, we only had a update two weeks ago?
- Plugin Name: Asgaros Forum
- Current Plugin Version: 3.1.0
- Details: To protect your site from this vulnerability, the safest option is to deactivate and completely remove “Asgaros Forum” until a patched version is available. Get more information.(opens in new tab)
- Repository URL: https://wordpress.org/plugins/asgaros-forum(opens in new tab)
- Vulnerability Information: https://www.wordfence.com/threat-intel/vulnerabilities/id/df324557-9ead-46aa-a019-89d1d5ca6d9c?source=plugin(opens in new tab)
- Vulnerability Severity: 6.4/10.0 (Medium)
is anyone else getting this, we only had a update two weeks ago?
- Plugin Name: Asgaros Forum
- Current Plugin Version: 3.1.0
- Details: To protect your site from this vulnerability, the safest option is to deactivate and completely remove “Asgaros Forum” until a patched version is available. Get more information.(opens in new tab)
- Repository URL: https://wordpress.org/plugins/asgaros-forum(opens in new tab)
- Vulnerability Information: https://www.wordfence.com/threat-intel/vulnerabilities/id/df324557-9ead-46aa-a019-89d1d5ca6d9c?source=plugin(opens in new tab)
- Vulnerability Severity: 6.4/10.0 (Medium)
Quote from SheWhoBuilds on May 17, 2025, 12:40 pmseems to have righted itself.
seems to have righted itself.
Quote from jame2000 on May 27, 2025, 9:58 amQuote from speed stars game on May 9, 2025, 1:46 amis anyone else getting this, we only had a update two weeks ago?
- Plugin Name: Asgaros Forum
- Current Plugin Version: 3.1.0
- Details: To protect your site from this vulnerability, the safest option is to deactivate and completely remove “Asgaros Forum” until a patched version is available. Get more information.(opens in new tab)
- Repository URL: https://wordpress.org/plugins/asgaros-forum(opens in new tab)
- Vulnerability Information: https://www.wordfence.com/threat-intel/vulnerabilities/id/df324557-9ead-46aa-a019-89d1d5ca6d9c?source=plugin(opens in new tab)
- Vulnerability Severity: 6.4/10.0 (Medium)
Quote from speed stars game on May 9, 2025, 1:46 amis anyone else getting this, we only had a update two weeks ago?
- Plugin Name: Asgaros Forum
- Current Plugin Version: 3.1.0
- Details: To protect your site from this vulnerability, the safest option is to deactivate and completely remove “Asgaros Forum” until a patched version is available. Get more information.(opens in new tab)
- Repository URL: https://wordpress.org/plugins/asgaros-forum(opens in new tab)
- Vulnerability Information: https://www.wordfence.com/threat-intel/vulnerabilities/id/df324557-9ead-46aa-a019-89d1d5ca6d9c?source=plugin(opens in new tab)
- Vulnerability Severity: 6.4/10.0 (Medium)
Quote from SheWhoBuilds on July 14, 2025, 6:38 amso still an issue? I really hope someone fixes/patches this software.
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/asgaros-forum/asgaros-forum-310-authenticated-contributor-stored-cross-site-scripting
so still an issue? I really hope someone fixes/patches this software.
Quote from Asgaros on August 9, 2025, 6:12 am@shewhobuilds
Please refer to the following topic:
https://asgaros.com/support/topic/version-3-1-0-xss-vulnerability/
Please refer to the following topic:
https://asgaros.com/support/topic/version-3-1-0-xss-vulnerability/