| Title | SimpleMachines SMF 2.1.4 Cross Site Scripting |
|---|
| Description | SMF v2.1.4 suffers from Reflected Cross-Site Scripting (XSS) Vulnerability in the 'subject' parameter of the 'ManageNews.php' script. This vulnerability allows attackers to cheat other users by injecting malicious scripts into web pages viewed by other users. |
|---|
| Source | ⚠️ https://github.com/Fewword/Poc/blob/main/smf/smf-poc5.md |
|---|
| User | Fewwords (UID 42682) |
|---|
| Submission | 03/01/2025 09:02 (1 Year ago) |
|---|
| Moderation | 03/20/2025 23:59 (20 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 300543 [SimpleMachines SMF 2.1.4 ManageNews.php subject/message cross site scripting] |
|---|
| Points | 17 |
|---|