Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
simple machines simple machines forum 1.1 rc1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5504
Cross-site scripting (XSS) vulnerability in index.php in Simple Machines Forum (SMF) allows remote malicious users to inject arbitrary web script or HTML via a base64 encoded params value in the action parameter.
Simple Machines Simple Machines Forum 1.0.7
Simple Machines Simple Machines Forum 1.1 Rc1
Simple Machines Simple Machines Forum 1.0.5
Simple Machines Simple Machines Forum 1.1 Rc3
Simple Machines Simple Machines Forum 1.1 Rc2
Simple Machines Simple Machines Forum 1.0.6
NA
CVE-2008-6657
Cross-site request forgery (CSRF) vulnerability in index.php in Simple Machines Forum (SMF) 1.0 prior to 1.0.15 and 1.1 prior to 1.1.7 allows remote malicious users to hijack the authentication of admins for requests that install packages via the package parameter in an install2 ...
Simple Machines Simple Machines Forum 1.0.11
Simple Machines Simple Machines Forum 1.1.5
Simple Machines Simple Machines Forum 1.1.1
Simple Machines Simple Machines Forum 1.0.7
Simple Machines Simple Machines Forum 1.1.4
Simple Machines Simple Machines Forum 1.1 Rc1
Simple Machines Simple Machines Forum 1.0.5
Simple Machines Simple Machines Forum 1.1.6
Simple Machines Simple Machines Forum 1.1 Rc3
Simple Machines Simple Machines Forum 1.1 Rc2
Simple Machines Simple Machines Forum 1.1.3
Simple Machines Simple Machines Forum 1.0.6
Simple Machines Simple Machines Forum 1.1.2
Simple Machines Simple Machines Forum 1.0.12
1 EDB exploit
NA
CVE-2008-6658
Directory traversal vulnerability in index.php in Simple Machines Forum (SMF) 1.0 prior to 1.0.15 and 1.1 prior to 1.1.7 allows remote authenticated administrators to install packages from arbitrary directories via a .. (dot dot) in the package parameter during an install2 action...
Simple Machines Simple Machines Forum 1.0.11
Simple Machines Simple Machines Forum 1.1.5
Simple Machines Simple Machines Forum 1.1.1
Simple Machines Simple Machines Forum 1.0.7
Simple Machines Simple Machines Forum 1.1.4
Simple Machines Simple Machines Forum 1.1 Rc1
Simple Machines Simple Machines Forum 1.0.5
Simple Machines Simple Machines Forum 1.1.6
Simple Machines Simple Machines Forum 1.1 Rc3
Simple Machines Simple Machines Forum 1.1 Rc2
Simple Machines Simple Machines Forum 1.1.3
Simple Machines Simple Machines Forum 1.0.6
Simple Machines Simple Machines Forum 1.1.2
Simple Machines Simple Machines Forum 1.0.12
1 EDB exploit
NA
CVE-2008-6659
Directory traversal vulnerability in index.php in Simple Machines Forum (SMF) 1.0 prior to 1.0.15 and 1.1 prior to 1.1.7 allows remote authenticated users to configure arbitrary local files for execution via directory traversal sequences in the value of the theme_dir field during...
Simple Machines Simple Machines Forum 1.0.11
Simple Machines Simple Machines Forum 1.1.5
Simple Machines Simple Machines Forum 1.1.1
Simple Machines Simple Machines Forum 1.0.7
Simple Machines Simple Machines Forum 1.1.4
Simple Machines Simple Machines Forum 1.1 Rc1
Simple Machines Simple Machines Forum 1.0.5
Simple Machines Simple Machines Forum 1.1.6
Simple Machines Simple Machines Forum 1.1 Rc3
Simple Machines Simple Machines Forum 1.1 Rc2
Simple Machines Simple Machines Forum 1.1.3
Simple Machines Simple Machines Forum 1.0.6
Simple Machines Simple Machines Forum 1.1.2
Simple Machines Simple Machines Forum 1.0.12
1 EDB exploit
NA
CVE-2005-4159
NOTE: this issue has been disputed by the vendor and third parties. SQL injection vulnerability in Memberlist.php in Simple Machines Forum (SMF) 1.1 rc1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the start parameter. NOTE: the vendor...
Simple Machines Simple Machines Forum
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started