CVE-2008-3073
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
08/07/2008
Last modified:
09/04/2025
Description
Unspecified vulnerability in Simple Machines Forum (SMF) 1.1.x before 1.1.5 and 1.0.x before 1.0.13 has unknown impact and attack vectors, probably cross-site scripting (XSS), related to "use of the html-tag."
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:simple_machines:simple_machines_forum:*:*:*:*:*:*:*:* | 1.0.12 (including) | |
| cpe:2.3:a:simple_machines:simple_machines_forum:*:*:*:*:*:*:*:* | 1.1.4 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://secunia.com/advisories/30955
- http://www.securityfocus.com/bid/30108
- http://www.simplemachines.org/community/index.php?P=c3696c2022b54fa50c5f341bf5710aa3&topic=236816.0
- http://secunia.com/advisories/30955
- http://www.securityfocus.com/bid/30108
- http://www.simplemachines.org/community/index.php?P=c3696c2022b54fa50c5f341bf5710aa3&topic=236816.0