2 matches found
CVE-2011-3615
Multiple SQL injection vulnerabilities in Simple Machines Forum SMF before 1.1.15 and 2.x before 2.0.1 allow remote attackers to execute arbitrary SQL commands via vectors involving a 1 HTML entity or 2 display name. NOTE: some of these details are obtained from third party information...
CVE-2011-3615
CVE-2011-3615 affects Simple Machines Forum (SMF). Remote attackers can exploit multiple SQL injection vulnerabilities via two vectors: (1) HTML entity handling and (2) display name processing. Affected software includes SMF versions before 1.1.15 and 2.x before 2.0.1. The underlying issue allows...