CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2005-4882

Malware in sbrugna...

9.8CVSS6.4AI score0.00368EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2006-0900

Malware in sbrugna...

4.3CVSS6.4AI score0.01316EPSS

Exploits1References12

NVD•added 2020/01/15 5:15 p.m.•8 views

CVE-2005-4891

Simple Machine Forum SMF versions 1.0.4 and earlier have an SQL injection vulnerability that allows remote attackers to inject arbitrary SQL statements...

9.8CVSS9.8AI score0.00368EPSS

Exploits1References2

Exploit DB•added 2015/09/24 12:0 a.m.•54 views

SMF (Simple Machine Forum) 2.0.10 - Remote Memory Exfiltration

!/usr/bin/python -- coding: iso-8859-15 -- Title: SMF Simple Machine Forum Filippo Roncari Truel Lab http://lab.truel.it Requirements: SMF = 2.0.10 PHP = 5.6.11 / 5.5.27 / 5.4.43 Advisories: TL-2015-PHP04 http://lab.truel.it/d/advisories/TL-2015-PHP04.txt TL-2015-PHP06...

7.4AI score

Exploits0

securityvulns•added 2009/12/21 12:0 a.m.•69 views

SMF (Simple Machine Forum) 1.1.11 XSS - Discovered by : Khashayar Fereidani

|| Script : SMF Simple Machine Forum 1.1.11 || Vulnerability Type : Active XSS Active Cross Site Scripting || Risk : Low || Discovered By Khashayar Fereidani || http://ircrash.com http://bugtraq.ircrash.com || Note : For use this vulnerability you need access to censor words panel . 1.First login...

0.3AI score

Exploits0

exploitpack•added 2007/04/09 12:0 a.m.•13 views

eCardMAX HotEditor 4.0 - Keyboard.php Local File Inclusion

eCardMAX HotEditor 4.0 - Keyboard.php Local File Inclusion source: https://www.securityfocus.com/bid/23377/info eCardMAX HotEditor is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view...

7.4AI score

Exploits0

Exploit DB•added 2007/04/09 12:0 a.m.•22 views

eCardMAX HotEditor 4.0 - 'Keyboard.php' Local File Inclusion

source: https://www.securityfocus.com/bid/23377/info eCardMAX HotEditor is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local scripts. HotEditor 4.0 is...

7AI score

Exploits0

NVD•added 2006/02/25 11:2 a.m.•7 views

CVE-2006-0896

Cross-site scripting XSS vulnerability in Sources/Register.php in Simple Machine Forum SMF 1.0.6 allows remote attackers to inject arbitrary web script or HTML via the X-Forwarded-For HTTP header field...

4.3CVSS5.7AI score0.01316EPSS

Exploits1References10

Cvelist•added 2006/02/25 11:0 a.m.•11 views

CVE-2006-0896

5.7AI score0.01316EPSS

Exploits1References10

CVE•added 2006/02/25 11:0 a.m.•44 views

CVE-2006-0896

The CVE-2006-0896 issue affects Simple Machines Forum (SMF) 1.0.6, specifically the Sources/Register.php script. The root cause is improper sanitization of the HTTP_X_FORWARDED_FOR header, enabling a remote attacker to inject arbitrary HTML or script via XSS. Documents indicate an exploit exists ...

4.3CVSS5.7AI score0.01316EPSS

Exploits1References10Affected Software1

Packet Storm•added 2005/09/01 12:0 a.m.•27 views

smf105.txt

Simple Machine Forum 1-0-5 possibly prior versions user IP address / information disclosure software: site: http://www.simplemachines.org/ information disclosure: a user can choose an sumbit an avatar url like this: http://evilsite/image.php where image.php is a file like this: When forum users...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by