CSRF in Simplemachines Smf

CVE-2011-4173

Cross-site request forgery (CSRF) vulnerability in Simple Machines Forum (SMF) 2.x before 2.0.1 allows remote attackers to hijack the authentication of administrators or moderators via vectors involving image files, a different vulnerabili…

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.006 (44.2th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References