CVE-2013-0192: Infoleak
First published: Fri Feb 07 2020(Updated: )
File Disclosure in SMF (SimpleMachines Forum) <= 2.0.3: Forum admin can read files such as the database config.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Simplemachines Simple Machines Forum | <=2.0.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-0192?
The severity of CVE-2013-0192 is medium with a severity value of 4.9.
How does File Disclosure in SMF (SimpleMachines Forum) <= 2.0.3 vulnerability work?
The vulnerability allows a forum administrator to read files, such as the database configuration, on the server.
Which version of Simple Machines Forum is affected by CVE-2013-0192?
Simple Machines Forum version 2.0.3 and below are affected by CVE-2013-0192.
What is the Common Weakness Enumeration (CWE) ID for CVE-2013-0192?
The CWE ID for CVE-2013-0192 is CWE-200.
Are there any references available for CVE-2013-0192?
Yes, there are references available for CVE-2013-0192. Please refer to the following links: [Link 1](http://www.openwall.com/lists/oss-security/2013/01/17/5), [Link 2](http://www.openwall.com/lists/oss-security/2013/01/31/1), [Link 3](http://www.openwall.com/lists/oss-security/2013/02/01/4).
- collector/nvd-index
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/simplemachines
- canonical/simplemachines simple machines forum
- version/simplemachines simple machines forum/2.0.3