5.6 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
80.0%
Cross-site scripting (XSS) vulnerability in index.php in Simple Machines Forum (SMF) allows remote attackers to inject arbitrary web script or HTML via a base64 encoded params value in the action parameter.
osvdb.org/31070
www.securityfocus.com/archive/1/449307/100/0/threaded
www.securityfocus.com/archive/1/449395/100/0/threaded
www.securityfocus.com/archive/1/449478/100/0/threaded
exchange.xforce.ibmcloud.com/vulnerabilities/29689