A vulnerability was found in Simplemachines Forum up to 1.0.15 (Forum Software). It has been declared as critical. This vulnerability affects an unknown code of the component File Upload. The manipulation with an unknown input leads to a unrestricted upload vulnerability. The CWE definition for the vulnerability is CWE-434. The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:

Unrestricted file upload vulnerability in the avatar upload functionality in Simple Machines Forum before 2.0.6 and 2.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory.

The weakness was released 10/25/2013 (Website). The advisory is shared for download at github.com. This vulnerability was named CVE-2013-4465 since 06/12/2013. The exploitation appears to be difficult. The attack can be initiated remotely. A single authentication is needed for exploitation. There are neither technical details nor an exploit publicly available. The MITRE ATT&CK project declares the attack technique as T1608.002.

Upgrading to version 1.0.16 eliminates this vulnerability.

The vulnerability is also documented in the vulnerability database at SecurityFocus (BID 63275†). Entries connected to this vulnerability are available at VDB-69529 and VDB-69528. Once again VulDB remains the best source for vulnerability data.

Productinfo

Type

• Forum Software

Vendor

• Simplemachines

Name

• Forum

Version

• 1.0.0
• 1.0.1
• 1.0.2
• 1.0.3
• 1.0.4
• 1.0.5
• 1.0.6
• 1.0.7
• 1.0.8
• 1.0.9
• 1.0.10
• 1.0.11
• 1.0.12
• 1.0.13
• 1.0.14
• 1.0.15

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion