Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
simple machines simple machines forum 1.1.2 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2007-2546
Session fixation vulnerability in Simple Machines Forum (SMF) 1.1.2 and previous versions allows remote malicious users to hijack web sessions by setting the PHPSESSID parameter.
Simple Machines Simple Machines Forum
10
CVSSv2
CVE-2011-1127
SSI.php in Simple Machines Forum (SMF) prior to 1.1.13, and 2.x prior to 2.0 RC5, does not properly restrict guest access, which allows remote malicious users to have an unspecified impact via unknown vectors.
Simplemachines Smf 1.1
Simplemachines Smf 1.1.11
Simplemachines Smf 1.1.10
Simplemachines Smf 1.0
Simplemachines Smf 1.0.15
Simplemachines Smf 1.0.20
Simplemachines Smf 1.0.21
Simplemachines Smf 1.1.9
Simplemachines Smf 1.1.4
Simplemachines Smf 1.0.12
Simplemachines Smf 1.0.13
Simplemachines Smf 1.0.5
Simplemachines Smf 1.0.4
Simplemachines Smf 1.0.3
Simplemachines Smf 1.0.2
Simplemachines Smf 1.1.5
Simplemachines Smf 1.1.8
Simplemachines Smf 1.0.10
Simplemachines Smf
Simplemachines Smf 1.0.9
Simplemachines Smf 1.0.7
Simplemachines Smf 1.0.17
3.5
CVSSv2
CVE-2011-1129
Cross-site scripting (XSS) vulnerability in the EditNews function in ManageNews.php in Simple Machines Forum (SMF) prior to 1.1.13, and 2.x prior to 2.0 RC5, might allow remote authenticated users to inject arbitrary web script or HTML via a save_items action.
Simplemachines Smf 1.1.6
Simplemachines Smf 1.1.5
Simplemachines Smf 1.1.7
Simplemachines Smf 1.1.8
Simplemachines Smf 1.1.9
Simplemachines Smf 1.0.9
Simplemachines Smf 1.0.8
Simplemachines Smf 1.0.7
Simplemachines Smf 1.0.6
Simplemachines Smf 1.1.1
Simplemachines Smf 1.1.2
Simplemachines Smf 1.1.3
Simplemachines Smf 1.0
Simplemachines Smf 1.1
Simplemachines Smf 1.1.10
Simplemachines Smf 1.0.12
Simplemachines Smf 1.0.10
Simplemachines Smf 1.0.15
Simplemachines Smf 1.0.4
Simplemachines Smf 1.0.2
Simplemachines Smf 1.0.14
Simplemachines Smf
7.5
CVSSv2
CVE-2011-1128
The loadUserSettings function in Load.php in Simple Machines Forum (SMF) prior to 1.1.13, and 2.x prior to 2.0 RC5, does not properly handle invalid login attempts, which might make it easier for remote malicious users to obtain access or cause a denial of service via a brute-for...
Simplemachines Smf 1.0
Simplemachines Smf 1.1.9
Simplemachines Smf 1.1.4
Simplemachines Smf 1.0.12
Simplemachines Smf 1.0.13
Simplemachines Smf 1.0.10
Simplemachines Smf 1.0.5
Simplemachines Smf 1.0.4
Simplemachines Smf 1.0.3
Simplemachines Smf 1.0.2
Simplemachines Smf 1.1
Simplemachines Smf 1.1.11
Simplemachines Smf 1.1.10
Simplemachines Smf 1.0.15
Simplemachines Smf 1.0.16
Simplemachines Smf 1.0.21
Simplemachines Smf 1.1.5
Simplemachines Smf 1.1.8
Simplemachines Smf
Simplemachines Smf 1.0.9
Simplemachines Smf 1.0.7
Simplemachines Smf 1.0.17
7.5
CVSSv2
CVE-2011-3615
Multiple SQL injection vulnerabilities in Simple Machines Forum (SMF) prior to 1.1.15 and 2.x prior to 2.0.1 allow remote malicious users to execute arbitrary SQL commands via vectors involving a (1) HTML entity or (2) display name. NOTE: some of these details are obtained from t...
Simplemachines Smf 1.1.5
Simplemachines Smf 1.0
Simplemachines Smf 1.1
Simplemachines Smf 1.0.2
Simplemachines Smf 1.0.3
Simplemachines Smf 1.0.8
Simplemachines Smf 1.0.9
Simplemachines Smf 1.1.9
Simplemachines Smf 1.0.10
Simplemachines Smf 1.1.1
Simplemachines Smf 1.1.2
Simplemachines Smf 1.0.17
Simplemachines Smf 1.0.1
Simplemachines Smf 1.1.12
Simplemachines Smf 1.1.11
Simplemachines Smf 1.1.13
Simplemachines Smf 1.1.3
Simplemachines Smf 1.1.4
Simplemachines Smf 1.0.13
Simplemachines Smf 1.0.12
Simplemachines Smf 1.0.4
Simplemachines Smf 1.0.5
7.5
CVSSv2
CVE-2011-1130
Simple Machines Forum (SMF) prior to 1.1.13, and 2.x prior to 2.0 RC5, does not properly validate the start parameter, which might allow remote malicious users to conduct SQL injection attacks, obtain sensitive information, or cause a denial of service via a crafted value, relate...
Simplemachines Smf 1.1.7
Simplemachines Smf 1.1.8
Simplemachines Smf 1.1.9
Simplemachines Smf 1.1.4
Simplemachines Smf 1.0.8
Simplemachines Smf 1.0.7
Simplemachines Smf 1.0.6
Simplemachines Smf 1.0.5
Simplemachines Smf 1.0.4
Simplemachines Smf 1.1.2
Simplemachines Smf 1.1.3
Simplemachines Smf 1.1
Simplemachines Smf
Simplemachines Smf 1.0
Simplemachines Smf 1.0.18
Simplemachines Smf 1.0.19
Simplemachines Smf 1.0.20
Simplemachines Smf 1.0.21
Simplemachines Smf 1.1.11
Simplemachines Smf 1.1.6
Simplemachines Smf 1.0.13
Simplemachines Smf 1.0.14
5
CVSSv2
CVE-2011-1131
The PlushSearch2 function in Search.php in Simple Machines Forum (SMF) prior to 1.1.13, and 2.x prior to 2.0 RC5, uses certain cached data in a situation where a temporary table has been created, even though this cached data is intended only for situations where a temporary table...
Simplemachines Smf 1.1
Simplemachines Smf 1.0.14
Simplemachines Smf
Simplemachines Smf 1.0
Simplemachines Smf 1.0.17
Simplemachines Smf 1.0.18
Simplemachines Smf 1.0.19
Simplemachines Smf 1.0.20
Simplemachines Smf 1.1.10
Simplemachines Smf 1.0.12
Simplemachines Smf 1.0.10
Simplemachines Smf 1.0.15
Simplemachines Smf 1.0.9
Simplemachines Smf 1.0.4
Simplemachines Smf 1.0.2
Simplemachines Smf 1.1.5
Simplemachines Smf 1.1.7
Simplemachines Smf 1.1.8
Simplemachines Smf 1.1.9
Simplemachines Smf 1.0.8
Simplemachines Smf 1.0.7
Simplemachines Smf 1.0.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2