Browse all 3 CVE security advisories affecting SMF. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SMF is a lightweight forum software used for creating online community discussion boards. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure session management. The software's modular architecture and extensive customization options have introduced additional attack surfaces. While no major public security incidents have been widely documented, the three recorded CVEs highlight ongoing security concerns, particularly around file upload handling and authentication bypass issues that could allow unauthorized access or system compromise.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2013-4395 | Simple Machines Forum 跨站脚本漏洞 — SMF | 6.1 | - | 2020-02-12 |
| CVE-2013-0192 | Simple Machines Forum 信息泄露漏洞 — SMF | 4.9 | - | 2020-02-07 |
| CVE-2009-5068 | Simple Machines Forum 安全漏洞 — SMF | 7.2 | - | 2020-01-15 |
This page lists every published CVE security advisory associated with SMF. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.