SQL Injection in Simplemachines Smf

CVE-2006-4564

SQL injection vulnerability in Sources/ManageBoards.php in Simple Machines Forum 1.1 RC3 allows remote attackers to execute arbitrary SQL commands via the cur_cat parameter.

Vulnerability class: SQL Injection

EPSS: 0.010 (60.1th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References