Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in the awardsMembers function in Sources/Profile.php in the Member Awards component 1.0.2 for Simple Machines Forum (SMF) allows remote attackers to execute arbitrary SQL commands via the id parameter in a profile action to index.php. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fustrate Simple Machines Forum Member Awards 'index.php' SQL注入漏洞
Vulnerability Description
在Simple Machines Forum (SMF)的Member Awards component 1.0.2的Sources/Profile.php中awardsMembers function 存在的SQL注入漏洞,允许远程攻击者通过profile action中的id参数到达index.php.
CVSS Information
N/A
Vulnerability Type
N/A