CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-7466

Simple Machines Forum (SMF) 2.0.4 allows local file inclusion, with resultant remote code execution, in install.php via ../ directory traversal in the db_type parameter if install.php remains present after installation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 77.9%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

http://hauntit.blogspot.com/2013/04/en-smf-204-full-disclosure.html
http://hauntit.blogspot.com/2013/04/en-smf-204-full-disclosure.html

Products affected by CVE-2013-7466

Simplemachines » Simple Machines Forum » Version: 2.0.4

cpe:2.3:a:simplemachines:simple_machines_forum:2.0.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-7466

Products

Pricing

Contact Us