Simple.Machines.Forum.PHP.Injection
Description
This indicates an attempt to exploit one of several PHP code Injection vulnerabilities in Simple Machines Forum.
The vulnerabilities are caused by an error that occurs when the vulnerable software handles a malicious HTTP request. They allow a remote attacker to execute arbitrary PHP code by sending a crafted request.
Affected Products
Simple Machines Forum 1.1.2 and prior.
Impact
System compromise: remote code execution.
Recommended Actions
Upgrade to the latest version, available from the web site.
http://www.simplemachines.org/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |