What is the severity of CVE-2011-1131?

CVE-2011-1131 is categorized as a high severity vulnerability due to its exploitation potential.

How do I fix CVE-2011-1131?

To address CVE-2011-1131, upgrade Simple Machines Forum to version 1.1.13 or 2.0 RC5 or later.

What versions of Simple Machines Forum are affected by CVE-2011-1131?

CVE-2011-1131 affects Simple Machines Forum versions prior to 1.1.13 and 2.x prior to 2.0 RC5.

What type of vulnerability is CVE-2011-1131?

CVE-2011-1131 is a vulnerability related to improper handling of cached data when temporary tables are created.

What could happen if CVE-2011-1131 is exploited?

Exploitation of CVE-2011-1131 could lead to unauthorized access to sensitive data stored in temporary tables.

Vulnerability/
CVE-2011-1131

medium

CWE

200

21/6/2011

16/9/2024

CVE-2011-1131: Infoleak

First published: Tue Jun 21 2011(Updated: )

The PlushSearch2 function in Search.php in Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, uses certain cached data in a situation where a temporary table has been created, even though this cached data is intended only for situations where a temporary table has not been created, which might allow remote attackers to obtain sensitive information via a search.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Simple Machines Forum	<=1.1.12
Simple Machines Forum	=1.0
Simple Machines Forum	=1.0-beta4
Simple Machines Forum	=1.0-beta4.1
Simple Machines Forum	=1.0-beta5
Simple Machines Forum	=1.0-beta6
Simple Machines Forum	=1.0-rc1
Simple Machines Forum	=1.0-rc2
Simple Machines Forum	=1.0.1
Simple Machines Forum	=1.0.2
Simple Machines Forum	=1.0.3
Simple Machines Forum	=1.0.4
Simple Machines Forum	=1.0.5
Simple Machines Forum	=1.0.6
Simple Machines Forum	=1.0.7
Simple Machines Forum	=1.0.8
Simple Machines Forum	=1.0.9
Simple Machines Forum	=1.0.10
Simple Machines Forum	=1.0.12
Simple Machines Forum	=1.0.13
Simple Machines Forum	=1.0.14
Simple Machines Forum	=1.0.15
Simple Machines Forum	=1.0.16
Simple Machines Forum	=1.0.17
Simple Machines Forum	=1.0.18
Simple Machines Forum	=1.0.19
Simple Machines Forum	=1.0.20
Simple Machines Forum	=1.0.21
Simple Machines Forum	=1.1
Simple Machines Forum	=1.1-beta1
Simple Machines Forum	=1.1-beta2
Simple Machines Forum	=1.1-beta3
Simple Machines Forum	=1.1-beta4
Simple Machines Forum	=1.1-rc1
Simple Machines Forum	=1.1-rc2
Simple Machines Forum	=1.1-rc3
Simple Machines Forum	=1.1.1
Simple Machines Forum	=1.1.2
Simple Machines Forum	=1.1.3
Simple Machines Forum	=1.1.4
Simple Machines Forum	=1.1.5
Simple Machines Forum	=1.1.6
Simple Machines Forum	=1.1.7
Simple Machines Forum	=1.1.8
Simple Machines Forum	=1.1.9
Simple Machines Forum	=1.1.10
Simple Machines Forum	=1.1.11
Simple Machines Forum	=2.0-beta1
Simple Machines Forum	=2.0-beta2
Simple Machines Forum	=2.0-beta2.1
Simple Machines Forum	=2.0-beta3
Simple Machines Forum	=2.0-beta3.1
Simple Machines Forum	=2.0-beta4
Simple Machines Forum	=2.0-rc1
Simple Machines Forum	=2.0-rc2
Simple Machines Forum	=2.0-rc3
Simple Machines Forum	=2.0-rc4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-1131?
CVE-2011-1131 is categorized as a high severity vulnerability due to its exploitation potential.
How do I fix CVE-2011-1131?
To address CVE-2011-1131, upgrade Simple Machines Forum to version 1.1.13 or 2.0 RC5 or later.
What versions of Simple Machines Forum are affected by CVE-2011-1131?
CVE-2011-1131 affects Simple Machines Forum versions prior to 1.1.13 and 2.x prior to 2.0 RC5.
What type of vulnerability is CVE-2011-1131?
CVE-2011-1131 is a vulnerability related to improper handling of cached data when temporary tables are created.
What could happen if CVE-2011-1131 is exploited?
Exploitation of CVE-2011-1131 could lead to unauthorized access to sensitive data stored in temporary tables.

agent/references
agent/type
agent/remedy
agent/softwarecombine
agent/severity
agent/author
agent/weakness
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/simplemachines
canonical/simple machines forum
version/simple machines forum/1.1.12
version/simple machines forum/1.0
version/simple machines forum/1.0-beta4
version/simple machines forum/1.0-beta4.1
version/simple machines forum/1.0-beta5
version/simple machines forum/1.0-beta6
version/simple machines forum/1.0-rc1
version/simple machines forum/1.0-rc2
version/simple machines forum/1.0.1
version/simple machines forum/1.0.2
version/simple machines forum/1.0.3
version/simple machines forum/1.0.4
version/simple machines forum/1.0.5
version/simple machines forum/1.0.6
version/simple machines forum/1.0.7
version/simple machines forum/1.0.8
version/simple machines forum/1.0.9
version/simple machines forum/1.0.10
version/simple machines forum/1.0.12
version/simple machines forum/1.0.13
version/simple machines forum/1.0.14
version/simple machines forum/1.0.15
version/simple machines forum/1.0.16
version/simple machines forum/1.0.17
version/simple machines forum/1.0.18
version/simple machines forum/1.0.19
version/simple machines forum/1.0.20
version/simple machines forum/1.0.21
version/simple machines forum/1.1
version/simple machines forum/1.1-beta1
version/simple machines forum/1.1-beta2
version/simple machines forum/1.1-beta3
version/simple machines forum/1.1-beta4
version/simple machines forum/1.1-rc1
version/simple machines forum/1.1-rc2
version/simple machines forum/1.1-rc3
version/simple machines forum/1.1.1
version/simple machines forum/1.1.2
version/simple machines forum/1.1.3
version/simple machines forum/1.1.4
version/simple machines forum/1.1.5
version/simple machines forum/1.1.6
version/simple machines forum/1.1.7
version/simple machines forum/1.1.8
version/simple machines forum/1.1.9
version/simple machines forum/1.1.10
version/simple machines forum/1.1.11
version/simple machines forum/2.0-beta1
version/simple machines forum/2.0-beta2
version/simple machines forum/2.0-beta2.1
version/simple machines forum/2.0-beta3
version/simple machines forum/2.0-beta3.1
version/simple machines forum/2.0-beta4
version/simple machines forum/2.0-rc1
version/simple machines forum/2.0-rc2
version/simple machines forum/2.0-rc3
version/simple machines forum/2.0-rc4

CVE-2011-1131: Infoleak

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-1131?

How do I fix CVE-2011-1131?

What versions of Simple Machines Forum are affected by CVE-2011-1131?

What type of vulnerability is CVE-2011-1131?

What could happen if CVE-2011-1131 is exploited?

Company

Resources

Contact