Simple.Machines.Forum.PHP.Injection

description-logoDescription

This indicates an attempt to exploit one of several PHP code Injection vulnerabilities in Simple Machines Forum.
The vulnerabilities are caused by an error that occurs when the vulnerable software handles a malicious HTTP request. They allow a remote attacker to execute arbitrary PHP code by sending a crafted request.

affected-products-logoAffected Products

Simple Machines Forum 1.1.2 and prior.

Impact logoImpact

System compromise: remote code execution.

recomended-action-logoRecommended Actions

Upgrade to the latest version, available from the web site.
http://www.simplemachines.org/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)