Scriptsbundle Adforest
8 CVEs affecting Scriptsbundle Adforest. Latest disclosed: 2026-02-12. Critical: 5, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-1729 | Critical | 9.8 | 2026-02-12 | The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to, and including, 6.0.12. This is due to the plugin not properly ve… |
CVE-2025-8359 | Critical | 9.8 | 2025-09-06 | The AdForest theme for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 6.0.9. This is due to the plugin not properly ver… |
CVE-2024-12857 | Critical | 9.8 | 2025-01-22 | The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to, and including, 5.1.8. This is due to the plugin not properly ver… |
CVE-2024-11350 | Critical | 9.8 | 2025-01-08 | The AdForest theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 5.1.6. This is due to the plu… |
CVE-2024-11349 | Critical | 9.8 | 2024-12-21 | The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to, and including, 5.1.6. This is due to the plugin not properly ver… |
CVE-2025-67946 | High | 8.1 | 2026-01-22 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in scriptsbundle AdForest adforest allows… |
CVE-2025-67569 | Medium | 5.3 | 2025-12-09 | Missing Authorization vulnerability in scriptsbundle AdForest adforest allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affec… |
CVE-2024-12855 | Medium | 4.3 | 2025-01-08 | The AdForest theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several AJAX actions like 'sb_remove_a… |