CVE-2011-4173

The data confirms CVE-2011-4173 is a CSRF vulnerability in Simple Machines Forum (SMF) 2.x prior to 2.0.1, enabling remote attackers to hijack administrator/moderator sessions via image-file related vectors. Affected product/component: SMF 2.x (before 2.0.1); root cause is a cross-site request fo...

CVE-2011-4173

Cross-site request forgery CSRF vulnerability in Simple Machines Forum SMF 2.x before 2.0.1 allows remote attackers to hijack the authentication of administrators or moderators via vectors involving image files, a different vulnerability than CVE-2011-3615. NOTE: some of these details are obtaine...