25 matches found
Simple Machines Forum (SMF) 2.0 - Session Hijacking
Simple Machines Forum SMF 2.0 - Session Hijacking Simple Machines forum SMF 2.0 session hijacking Found by The X-C3LL and seth http://0verl0ad.blogspot.com/ || http://xd-blog.com.ar/ 2011-08-06 Website: http://www.simplemachines.org/ Greets: yoyahack, eddyw, www.portalhacker.net SMF stops csrf...
Simple Machines Forum 1.4
Sibertrwolf c 2008 C AY VE YILDIZ GECE YAKIIR C SonSuza Dek TRK FLSTN KARDEL Alembuysa Kral M.H.P : Smf 1.1.4 Remote File Inclusion Vulnerabilities Download: http://www.simplemachines.org Dork : Powerd by SMF 1.1.4 Exploit:...
CVE-2007-3295
Directory traversal vulnerability in Yet another Bulletin Board YaBB 2.1 and earlier allows remote authenticated users to execute arbitrary Perl code via a .. dot dot in the userlanguage profile setting, which sets the userlanguage key of the member hash, and is propagated to the language variabl...
CVE-2007-3295
Directory traversal vulnerability in Yet another Bulletin Board YaBB 2.1 and earlier allows remote authenticated users to execute arbitrary Perl code via a .. dot dot in the userlanguage profile setting, which sets the userlanguage key of the member hash, and is propagated to the language variabl...
Sql injections in e107 [Admin section]
Hi, There is a sql injection in SMF 1.1 RC3, in admin section : When an administrator is going to add a new board, the "curcat" parameter is not checked properly : File /Sources/ManageBoards.php, Line 609 : :: // Create a new board... :: if isset$POST'add' :: :: // New boards by default go to the...