📦 Simple Machines Forum

This vulnerability allows remote authenticated administrators in SimpleMachinesForum to execute arbitrary PHP code by modifying themes. It affects SimpleMachinesForum versions 2.1.1 and earlier. The v...

A stored cross-site scripting (XSS) vulnerability in Simple Machines Forum v2.1.6 allows attackers to inject malicious scripts into the Forum Name parameter, which then executes in victims' browsers w...

This vulnerability in SimpleMachines SMF 2.1.4 allows attackers to manipulate resource identifiers when reading user alerts, potentially leading to improper access to system resources. The attack can ...

This critical vulnerability in SimpleMachines SMF 2.1.4 allows remote attackers to manipulate resource identifiers in the user alert deletion function, potentially enabling unauthorized actions. It af...