So JetPack is telling me that wpForo has a critical security vulnerability, ref. title. The information I can find on this vulnerability says it affects wpForo up to and including 3.0.2. I see 3.0.3 has a release note entry that this is resolved, yet there's no update on the CVE report saying it's resolved. Can someone confirm that this issue is resolved, so I can re-enable wpForo on my website? Searching these forums didn't show me anything that looks like this was asked yet. Thank you.
@mikesafh I would say the security fix you see on 3.0.3 is the fix for that. I doubt it they would release even 0.4 and even 0.5 without that fix. Services such as JetPack and WordFence sometimes take days to update their advisories, even after these have been fixed. But yeah, let's allow the devs to answer for sure.
