CVE Vulnerabilities

CVE-2007-3942

Published: Jul 21, 2007 | Modified: May 17, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Directory traversal vulnerability in index.php in Simple Machines Forum (SMF) 1.1.3 allows remote attackers to include local files via unspecified vectors related to the sourcedir parameter or the actionArray hash. NOTE: CVE and multiple third parties dispute this vulnerability because both sourcedir and actionArray are defined before use

Affected Software

Name Vendor Start Version End Version
Simple_machines_forum Simple_machines 1.1.3 (including) 1.1.3 (including)

References