Vulnerabilities > CVE-2008-3073 - Multiple Unspecified vulnerability in Simple Machine Forum Prior to 1.1.5 and 1.0.13

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

simple-machines

NVD

Published: 2008-07-08

Updated: 2012-11-27

Summary

Unspecified vulnerability in Simple Machines Forum (SMF) 1.1.x before 1.1.5 and 1.0.x before 1.0.13 has unknown impact and attack vectors, probably cross-site scripting (XSS), related to "use of the html-tag."

Vulnerable Configurations

Part	Description	Count
Application	Simple_Machines Simple Machines Simple Machines Forum *	1

References

http://secunia.com/advisories/30955
http://www.securityfocus.com/bid/30108
http://www.simplemachines.org/community/index.php?P=c3696c2022b54fa50c5f341bf5710aa3&topic=236816.0