PT-2025-14803 · Unknown · Student-Manage

Name of the Vulnerable Software and Affected Versions: student-manage version 1 Description: The issue allows a local attacker to escalate privileges due to insecure permission verification. This is achieved through the unsafe permission verification process. Recommendations: For version 1,...

smf105.txt

Simple Machine Forum 1-0-5 possibly prior versions user IP address / information disclosure software: site: http://www.simplemachines.org/ information disclosure: a user can choose an sumbit an avatar url like this: http://evilsite/image.php where image.php is a file like this: When forum users...