The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to, and including, 5.1.6. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Authentication Bypass
WordPress
Adforest
NVD
CVSS 3.1
9.8
EPSS
1.2%