CVE-2011-1130
SMF is affected by SQL injection in the start parameter validation in the code paths cleanRequest (QueryString.php) and constructPageIndex (Subs.php). The issue affects SMF releases before 1.1.13 and 2.x before 2.0 RC5, enabling remote attackers to perform SQL injection, potentially disclose data...