Vulnerability in Simplemachines Smf
CVE-2011-1127
SSI.php in Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, does not properly restrict guest access, which allows remote attackers to have an unspecified impact via unknown vectors.
EPSS: 0.022 (80.5th percentile) — read the EPSS interpretation.
Affected products
- Simplemachines Smf — versions 1.0, 1.0.1, 1.0.2
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (mailing-list, x_refsource_MLIST, Patch)
- cve@mitre.org (x_refsource_CONFIRM, Patch)
- cve@mitre.org (mailing-list, x_refsource_MLIST, Patch)
- cve@mitre.org (x_refsource_CONFIRM, Patch)