Index: includes/admin/converters/Kunena2.php
===================================================================
--- includes/admin/converters/Kunena2.php	(revision 7250)
+++ includes/admin/converters/Kunena2.php	(working copy)
@@ -503,7 +503,7 @@
 	 * @return string WordPress safe
 	 */
 	public function callback_forum_type( $status = 0 ) {
-		if ( $status == 0 ) {
+		if ( $status === 0 ) {
 			$status = 'category';
 		} else {
 			$status = 'forum';
Index: includes/admin/users.php
===================================================================
--- includes/admin/users.php	(revision 7250)
+++ includes/admin/users.php	(working copy)
@@ -194,9 +194,9 @@
 
 		$new_role = false;
 		if ( ! empty( $_REQUEST['bbp-change-role2'] ) && ! empty( $_REQUEST['bbp-new-role2'] ) ) {
-			$new_role = $_REQUEST['bbp-new-role2'];
+			$new_role = sanitize_text_field( $_REQUEST['bbp-new-role2'] );
 		} elseif ( ! empty( $_REQUEST['bbp-change-role'] ) && ! empty( $_REQUEST['bbp-new-role'] ) ) {
-			$new_role = $_REQUEST['bbp-new-role'];
+			$new_role = sanitize_text_field( $_REQUEST['bbp-new-role'] );
 		}
 
 		// Check that the new role exists
Index: templates/default/bbpress-functions.php
===================================================================
--- templates/default/bbpress-functions.php	(revision 7250)
+++ templates/default/bbpress-functions.php	(working copy)
@@ -259,7 +259,7 @@
 		}
 
 		// Bail if user did not take this action
-		if ( ! isset( $_POST['nonce'] ) || ! wp_verify_nonce( $_POST['nonce'], 'toggle-favorite_' . $object->ID ) ) {
+		if ( ! isset( $_POST['nonce'] ) || ! wp_verify_nonce( sanitize_text_field( $_POST['nonce'] ), 'toggle-favorite_' . $object->ID ) ) {
 			bbp_ajax_response( false, esc_html__( 'Are you sure you meant to do that?', 'bbpress' ), 304 );
 		}
 
@@ -322,7 +322,7 @@
 		}
 
 		// Bail if user did not take this action
-		if ( ! isset( $_POST['nonce'] ) || ! wp_verify_nonce( $_POST['nonce'], 'toggle-subscription_' . $object->ID ) ) {
+		if ( ! isset( $_POST['nonce'] ) || ! wp_verify_nonce( sanitize_text_field( $_POST['nonce'] ), 'toggle-subscription_' . $object->ID ) ) {
 			bbp_ajax_response( false, esc_html__( 'Are you sure you meant to do that?', 'bbpress' ), 304 );
 		}