Muhammad Zidan Ali Mansur

**Name of the Vulnerable Software and Affected Versions** wpForo Forum versions through 2.4.6 **Description** An authorization bypass issue exists in Tomdever wpForo Forum due to incorrectly configured access control security levels. This allows exploitation through a user-controlled key. **Recommendations** Update wpForo Forum to a version later than 2.4.6.

**Name of the Vulnerable Software and Affected Versions** Poll Maker (affected versions not specified) **Description** The issue is related to improper encoding or escaping of output in Poll Maker Team Poll Maker. This can potentially lead to security issues, but specific details about exploitation, such as API endpoints, vulnerable parameters, or function names, are not provided. There is no information available about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CreativeMindsSolutions CM Answers versions 3.2.6 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions 3.2.6 and earlier, update to a version that contains a fix for this issue, as no specific workaround is provided in the available information.