Name of the Vulnerable Software and Affected Versions:

AdForest WordPress Theme versions prior to 6.1.0

Description:

The AdForest theme for WordPress is susceptible to an authentication bypass, allowing unauthorized user access. The theme does not properly verify a user’s identity before authentication, potentially enabling attackers to log in as other users, including administrators, without a password.

Recommendations:

Update AdForest to version 6.1.0 or later.

Disable the AdForest theme.

Restrict access to administrative accounts.

Monitor for suspicious login attempts.