CVE-2012-5903
- EPSS 2.47%
- Veröffentlicht 17.11.2012 21:55:05
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 2.0.2 allows remote attackers to inject arbitrary web script or HTML via the scheduled parameter to index.php.
CVE-2008-2019
- EPSS 4.59%
- Veröffentlicht 30.04.2008 01:07:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Simple Machines Forum (SMF), probably 1.1.4, relies on "randomly generated static" to hinder brute-force attacks on the WAV file (aka audio) CAPTCHA, which allows remote attackers to pass the CAPTCHA test via an automated attack that considers Hammin...
CVE-2006-6375
- EPSS 1.57%
- Veröffentlicht 07.12.2006 17:28:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Cross-site scripting (XSS) vulnerability in display.php in Simple Machines Forum (SMF) 1.1 Final and earlier allows remote attackers to inject arbitrary web script or HTML via the contents of a file that is uploaded with the image parameter set, whic...
CVE-2004-1996
- EPSS 0.4%
- Veröffentlicht 05.05.2004 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 1.0 allows remote attackers to inject arbitrary web script via the size tag.