There is a file disclosure vulnerability in SMF (Simple Machines Forum) affecting versions through v2.0.3. On some configurations a SMF deployment is shared by several "co-admins" that are not trusted beyond the SMF deployment. This vulnerability allows them to read arbitrary files on the filesyste...
7.2CVSS
6.8AI Score
0.001EPSS
File Disclosure in SMF (SimpleMachines Forum) <= 2.0.3: Forum admin can read files such as the database config.
4.9CVSS
5.1AI Score
0.001EPSS
6.1CVSS
6AI Score
0.001EPSS
An issue was discovered in Simple Machines Forum (SMF) before 2.0.16. Reverse tabnabbing can occur because of use of _blank for external links.
6.5CVSS
6.4AI Score
0.002EPSS