An issue exists in Simple Machines Forum (SMF) before release 2.0.17. There is SSRF related to Subs-Package.php and Subs.php because user-supplied data is used directly in curl calls.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
simplemachines simple machine forum |