The effects of alcohol on sustanon 250 leucine for – real weight loss & bodybuilding benefits?
Search
Close
AI Search
Classic Search
 Search Phrase:
 Search Type:
Advanced search options
 Search in Forums:
 Search in date period:

 Sort Search Results by:

AI Assistant
Forums
Community Support
Bug Reports
Unauthenticated Ins...
 
Notifications
Clear all

Bug [Solved] Unauthenticated Insecure Direct Object Reference

  Summarize Topic
Bug Reports
Last Post by Tom 2 weeks ago
5 Posts
4 Users
0 Reactions
156 Views
RSS
Posts: 2
 SKKK
Topic starter
Translate
English
Spanish
French
German
Italian
Portuguese
Russian
Chinese
Japanese
Korean
Arabic
Hindi
Dutch
Polish
Turkish
Vietnamese
Thai
Swedish
Danish
Finnish
Norwegian
Czech
Hungarian
Romanian
Greek
Hebrew
Indonesian
Malay
Ukrainian
Bulgarian
Croatian
Slovak
Slovenian
Serbian
Lithuanian
Latvian
Estonian
Jan 09, 2026 10:46 am
(@skkk)
Active Member
Joined: 3 weeks ago
[#11199]

wpDiscuz plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.6.42 due to missing validation on a user controlled key. This makes it possible for unauthenticated attackers to perform unauthorized actions.

References


Topic Tags
security
4 Replies
Tom
Posts: 514
 Tom
Support
Translate
English
Spanish
French
German
Italian
Portuguese
Russian
Chinese
Japanese
Korean
Arabic
Hindi
Dutch
Polish
Turkish
Vietnamese
Thai
Swedish
Danish
Finnish
Norwegian
Czech
Hungarian
Romanian
Greek
Hebrew
Indonesian
Malay
Ukrainian
Bulgarian
Croatian
Slovak
Slovenian
Serbian
Lithuanian
Latvian
Estonian
Jan 09, 2026 10:59 am
(@tomson)
Honorable Member
Joined: 10 years ago

Hi @skkk,

Please leave my reply here:  https://wpdiscuz.com/community/postid/29801/


Asti
Posts: 8220
 Asti
Support
Translate
English
Spanish
French
German
Italian
Portuguese
Russian
Chinese
Japanese
Korean
Arabic
Hindi
Dutch
Polish
Turkish
Vietnamese
Thai
Swedish
Danish
Finnish
Norwegian
Czech
Hungarian
Romanian
Greek
Hebrew
Indonesian
Malay
Ukrainian
Bulgarian
Croatian
Slovak
Slovenian
Serbian
Lithuanian
Latvian
Estonian
Jan 12, 2026 12:34 pm
(@asti)
Illustrious Member
Joined: 8 years ago

Please update the wpDiscuz to the latest version (v7.6.43) and check if the issue persists.


In case you want to say thank you! 🙂
We'd really appreciate if you leave a good review on the plugin page.
This is the best way to say thank you to this project and the support team.

2 Replies
 Hashtag
(@hashtag)
Joined: 3 weeks ago

Active Member
Posts: 5
Jan 16, 2026 4:36 pm
Reply toAstiAsti
Translate
English
Spanish
French
German
Italian
Portuguese
Russian
Chinese
Japanese
Korean
Arabic
Hindi
Dutch
Polish
Turkish
Vietnamese
Thai
Swedish
Danish
Finnish
Norwegian
Czech
Hungarian
Romanian
Greek
Hebrew
Indonesian
Malay
Ukrainian
Bulgarian
Croatian
Slovak
Slovenian
Serbian
Lithuanian
Latvian
Estonian

@asti Issue still persists with JetPack, for me. Seems like WordFence is triggering the report that JetPack references? Hopefully you guys can get them to update on their end, if the current version fixes the issue. 

CleanShot 2026 01 16 at 07.35.17@2x

Tom
 Tom
Support
(@tomson)
Joined: 10 years ago

Honorable Member
Posts: 514
Tom - X.com
Jan 16, 2026 5:12 pm
Reply toHashtag
Asti
Translate
English
Spanish
French
German
Italian
Portuguese
Russian
Chinese
Japanese
Korean
Arabic
Hindi
Dutch
Polish
Turkish
Vietnamese
Thai
Swedish
Danish
Finnish
Norwegian
Czech
Hungarian
Romanian
Greek
Hebrew
Indonesian
Malay
Ukrainian
Bulgarian
Croatian
Slovak
Slovenian
Serbian
Lithuanian
Latvian
Estonian

@hashtag,

Make sure you have updated to the latest 7.6.44 version.


Forum Jump:
  Previous Topic
Next Topic  
Related Topics
Topic Tags:  security (5) ,
Share: