info
discussion
exploit
solution
references
Simple Machines Forum Index.PHP Cross-Site Scripting Vulnerability
Solution:
The vendor has released fixes to address this. Please see the references for further information.
Simple Machines SMF 1.0.8
Simple Machines smf_1-0-9_install.tar.gz
http://www.simplemachines.org/download/index.php?thanks;filename=smf_1 -0-9_install.tar.gz
Simple Machines smf_1-0-9_update.tar.gz
http://www.simplemachines.org/download/index.php?thanks;filename=smf_1 -0-9_update.tar.gz
Simple Machines smf_1-0-9_upgrade.tar.gz
http://www.simplemachines.org/download/index.php?thanks;filename=smf_1 -0-9_upgrade.tar.gz
Simple Machines SMF 1.1 rc2
Simple Machines smf_1-1-rc3_install.tar.gz
http://www.simplemachines.org/download/index.php?thanks;filename=smf_1 -1-rc3_install.tar.gz
Simple Machines smf_1-1-rc3_update.tar.gz
http://www.simplemachines.org/download/index.php?thanks;filename=smf_1 -1-rc3_update.tar.gz
Simple Machines smf_1-1-rc3_upgrade.tar.gz
http://www.simplemachines.org/download/index.php?thanks;filename=smf_1 -1-rc3_upgrade.tar.gz
Privacy Statement
Copyright 2010, SecurityFocus