CVE-2019-11574
Simple Machines Forum (SMF) prior to release 2.0.17 is affected by a server-side request forgery (SSRF) in Subs-Package.php and Subs.php, where user-supplied data is used directly in curl calls. Affects SMF versions before 2.0.17; CVE-2019-11574 details an SSRF condition with high impact per CVSS...