Search

Close

AI Search

Classic Search

Search Phrase:

Search Type:

Advanced search options

Search in Forums:

Search in date period:

Sort Search Results by:

AI Assistant

Share:

Notifications

Clear all

Bug Unauthenticated Insecure Direct Object Reference

✦ Summarize Topic

Bug Reports

Last Post by Tom 16 hours ago

2 Posts

2 Users

0 Reactions

24 Views

RSS

Posts: 2

SKKK

Topic starter

Translate ▼

Jan 09, 2026 10:46 am

(@skkk)

Active Member

Joined: 16 hours ago

[#11199]

wpDiscuz plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.6.42 due to missing validation on a user controlled key. This makes it possible for unauthenticated attackers to perform unauthorized actions.

References

vdp.patchstack.com

1 Reply

Posts: 509

Tom

Support

Translate ▼

Jan 09, 2026 10:59 am

(@tomson)

Honorable Member

Joined: 10 years ago

Please leave my reply here: https://wpdiscuz.com/community/postid/29801/

Reply

Forum Jump:

RE: we are facing security problem

@skkk, Thank you for providing the detailed. We ac...

By Tom , 15 hours ago
RE: Unauthenticated Insecure Direct Object Reference

Hi @skkk, Please leave my reply here:/p>

By Tom , 16 hours ago
RE: Button to separate comments from feedback comments

@asti OK, maybe do a poll to see what users want. Could...

By Sea Odyssey , 2 days ago
RE: Elementor shortcode for inline commenting

@asti Above

By Sea Odyssey , 2 weeks ago
RE: Multi comment section support on single page?

Yes, its a little tricky but basically the same thing i...

By adamross23 , 4 weeks ago
RE: How to show limited comments with “Load More” on a specific page only?

Hi, Please find the code below: //comments_per_pag...

By Asti , 4 weeks ago

Share:

8 Forums
4,264 Topics
20.9 K Posts
23 Online
4,666 Members

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed

Powered by wpForo version 3.0.0.0