Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
simplemachines simple machines forum 2.0.4 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2013-7466
Simple Machines Forum (SMF) 2.0.4 allows local file inclusion, with resultant remote code execution, in install.php via ../ directory traversal in the db_type parameter if install.php remains present after installation.
Simplemachines Simple Machines Forum 2.0.4
6.1
CVSSv3
CVE-2013-7467
Simple Machines Forum (SMF) 2.0.4 allows XSS via the index.php?action=pm;sa=settings;save sa parameter.
Simplemachines Simple Machines Forum 2.0.4
8.1
CVSSv3
CVE-2013-7468
Simple Machines Forum (SMF) 2.0.4 allows PHP Code Injection via the index.php?action=admin;area=languages;sa=editlang dictionary parameter.
Simplemachines Simple Machines Forum 2.0.4
NA
CVE-2013-7234
Simple Machines Forum (SMF) prior to 1.1.19 and 2.x prior to 2.0.6 allows remote malicious users to conduct clickjacking attacks via an X-Frame-Options header.
Simplemachines Simple Machines Forum 1.0.15
Simplemachines Simple Machines Forum 1.1
Simplemachines Simple Machines Forum 1.1.6
Simplemachines Simple Machines Forum 1.1.15
Simplemachines Simple Machines Forum 1.1.8
Simplemachines Simple Machines Forum 1.1.5
Simplemachines Simple Machines Forum 2.0
Simplemachines Simple Machines Forum 1.1.11
Simplemachines Simple Machines Forum 1.1.14
Simplemachines Simple Machines Forum 1.0.14
Simplemachines Simple Machines Forum 1.0.8
Simplemachines Simple Machines Forum 1.0
Simplemachines Simple Machines Forum 1.1.16
Simplemachines Simple Machines Forum 1.1.1
Simplemachines Simple Machines Forum
Simplemachines Simple Machines Forum 1.0.2
Simplemachines Simple Machines Forum 1.0.12
Simplemachines Simple Machines Forum 1.0.16
Simplemachines Simple Machines Forum 2.0.4
Simplemachines Simple Machines Forum 1.0.9
Simplemachines Simple Machines Forum 1.0.23
Simplemachines Simple Machines Forum 1.0.21
NA
CVE-2013-7235
Simple Machines Forum (SMF) prior to 1.1.19 and 2.x prior to 2.0.6 allows remote malicious users to impersonate arbitrary users via multiple space characters characters.
Simplemachines Simple Machines Forum 1.0.15
Simplemachines Simple Machines Forum 1.1
Simplemachines Simple Machines Forum 1.1.6
Simplemachines Simple Machines Forum 1.1.15
Simplemachines Simple Machines Forum 1.1.8
Simplemachines Simple Machines Forum 1.1.5
Simplemachines Simple Machines Forum 2.0
Simplemachines Simple Machines Forum 1.1.11
Simplemachines Simple Machines Forum 1.1.14
Simplemachines Simple Machines Forum 1.0.14
Simplemachines Simple Machines Forum 1.0.8
Simplemachines Simple Machines Forum 1.0
Simplemachines Simple Machines Forum 1.1.16
Simplemachines Simple Machines Forum 1.1.1
Simplemachines Simple Machines Forum
Simplemachines Simple Machines Forum 1.0.2
Simplemachines Simple Machines Forum 1.0.12
Simplemachines Simple Machines Forum 1.0.16
Simplemachines Simple Machines Forum 2.0.4
Simplemachines Simple Machines Forum 1.0.9
Simplemachines Simple Machines Forum 1.0.23
Simplemachines Simple Machines Forum 1.0.21
NA
CVE-2013-4465
Unrestricted file upload vulnerability in the avatar upload functionality in Simple Machines Forum prior to 2.0.6 and 2.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the fi...
Simplemachines Simple Machines Forum 1.0.15
Simplemachines Simple Machines Forum 1.1.6
Simplemachines Simple Machines Forum 1.1.15
Simplemachines Simple Machines Forum 1.1.8
Simplemachines Simple Machines Forum 1.1.5
Simplemachines Simple Machines Forum 1.1.11
Simplemachines Simple Machines Forum 1.1.14
Simplemachines Simple Machines Forum 1.0.14
Simplemachines Simple Machines Forum 1.0.8
Simplemachines Simple Machines Forum 1.1.16
Simplemachines Simple Machines Forum 1.1.1
Simplemachines Simple Machines Forum 1.0.2
Simplemachines Simple Machines Forum 1.0.12
Simplemachines Simple Machines Forum 1.0.16
Simplemachines Simple Machines Forum 2.0.4
Simplemachines Simple Machines Forum 1.0
Simplemachines Simple Machines Forum 1.0.9
Simplemachines Simple Machines Forum 1.0.23
Simplemachines Simple Machines Forum 1.0.21
Simplemachines Simple Machines Forum 1.0.6
Simplemachines Simple Machines Forum 2.1
Simplemachines Simple Machines Forum 2.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2024-5274
CVE-2020-17519
CVE-2024-35340
CVE-2021-47558
local
XML injection
CVE-2021-47519
CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started