Lucene search

Simple Machines Forum Security Vulnerabilities - 2020

cve

CVE-2009-5068

There is a file disclosure vulnerability in SMF (Simple Machines Forum) affecting versions through v2.0.3. On some configurations a SMF deployment is shared by several "co-admins" that are not trusted beyond the SMF deployment. This vulnerability allows them to read arbitrary files on the filesyste...

7.2CVSS

6.8AI Score

0.001EPSS

2020-01-15 09:15 PM

cve

CVE-2013-0192

File Disclosure in SMF (SimpleMachines Forum) <= 2.0.3: Forum admin can read files such as the database config.

4.9CVSS

5.1AI Score

0.001EPSS

2020-02-07 02:15 PM

cve

CVE-2013-4395

Simple Machines Forum (SMF) through 2.0.5 has XSS

6.1CVSS

6AI Score

0.001EPSS

2020-02-12 04:15 PM

cve

CVE-2019-12490

An issue was discovered in Simple Machines Forum (SMF) before 2.0.16. Reverse tabnabbing can occur because of use of _blank for external links.

6.5CVSS

6.4AI Score

0.002EPSS

2020-01-22 06:15 AM