Perses

**Name of the Vulnerable Software and Affected Versions** wpForo Forum versions prior to 3.0.7 **Description** A missing authorization issue in the wpForo Forum allows for the exploitation of incorrectly configured access control security levels. **Recommendations** Update to version 3.0.7 or later.

**Name of the Vulnerable Software and Affected Versions** Advanced Access Manager versions prior to 7.1.1 **Description** An authentication bypass by spoofing issue exists in the Advanced Access Manager plugin. This flaw allows the use of URL Encoding to bypass security controls. **Recommendations** Update to a version later than 7.1.0.