CVE-2013-7235

Simple Machines Forum (SMF) before 1.1.19 and 2.x before 2.0.6 allows remote attackers to impersonate arbitrary users via multiple space characters characters.

Published: Apr 29, 2014
Updated: Apr 13, 2023
CVE: CVE-2013-7235
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
simplemachines / simple_machines_forum	1.0.15	1.0.15.x
simplemachines / simple_machines_forum	1.1-beta2	1.1-beta2.x
simplemachines / simple_machines_forum	1.1.6	1.1.6.x
simplemachines / simple_machines_forum	1.1.15	1.1.15.x
simplemachines / simple_machines_forum	1.1.8	1.1.8.x
simplemachines / simple_machines_forum	1.1.5	1.1.5.x
simplemachines / simple_machines_forum	2.0-beta3.1	2.0-beta3.1.x
simplemachines / simple_machines_forum	1.1-beta4	1.1-beta4.x
simplemachines / simple_machines_forum	1.1.11	1.1.11.x
simplemachines / simple_machines_forum	1.1.14	1.1.14.x
simplemachines / simple_machines_forum	2.0-beta1	2.0-beta1.x
simplemachines / simple_machines_forum	1.0.14	1.0.14.x
simplemachines / simple_machines_forum	1.0.8	1.0.8.x
simplemachines / simple_machines_forum	1.0-beta6	1.0-beta6.x
simplemachines / simple_machines_forum	1.1.16	1.1.16.x
simplemachines / simple_machines_forum	2.0-beta2.1	2.0-beta2.1.x
simplemachines / simple_machines_forum	1.1.1	1.1.1.x
simplemachines / simple_machines_forum	-	1.1.9.x
simplemachines / simple_machines_forum	1.0.2	1.0.2.x
simplemachines / simple_machines_forum	1.0.12	1.0.12.x
simplemachines / simple_machines_forum	2.0-rc4	2.0-rc4.x
simplemachines / simple_machines_forum	1.0-beta4	1.0-beta4.x
simplemachines / simple_machines_forum	1.1-rc1	1.1-rc1.x
simplemachines / simple_machines_forum	1.0.16	1.0.16.x
simplemachines / simple_machines_forum	2.0.4	2.0.4.x
simplemachines / simple_machines_forum	1.0	1.0.x
simplemachines / simple_machines_forum	2.0-rc3	2.0-rc3.x
simplemachines / simple_machines_forum	1.0.9	1.0.9.x
simplemachines / simple_machines_forum	1.0.23	1.0.23.x
simplemachines / simple_machines_forum	2.0-beta3	2.0-beta3.x
simplemachines / simple_machines_forum	1.0.21	1.0.21.x
simplemachines / simple_machines_forum	1.1-rc3	1.1-rc3.x
simplemachines / simple_machines_forum	1.0.6	1.0.6.x
simplemachines / simple_machines_forum	2.0.2	2.0.2.x
simplemachines / simple_machines_forum	2.0-rc2	2.0-rc2.x
simplemachines / simple_machines_forum	1.0-beta4.1	1.0-beta4.1.x
simplemachines / simple_machines_forum	2.0-rc5	2.0-rc5.x
simplemachines / simple_machines_forum	1.1.3	1.1.3.x
simplemachines / simple_machines_forum	1.0.3	1.0.3.x
simplemachines / simple_machines_forum	1.0.5	1.0.5.x
simplemachines / simple_machines_forum	2.0.5	2.0.5.x
simplemachines / simple_machines_forum	1.0.18	1.0.18.x
simplemachines / simple_machines_forum	2.0-beta4	2.0-beta4.x
simplemachines / simple_machines_forum	1.0.17	1.0.17.x
simplemachines / simple_machines_forum	2.0.3	2.0.3.x
simplemachines / simple_machines_forum	1.0.20	1.0.20.x
simplemachines / simple_machines_forum	1.0-rc2	1.0-rc2.x
simplemachines / simple_machines_forum	1.1.10	1.1.10.x
simplemachines / simple_machines_forum	1.0-rc1	1.0-rc1.x
simplemachines / simple_machines_forum	1.1-rc2	1.1-rc2.x
simplemachines / simple_machines_forum	1.1.17	1.1.17.x
simplemachines / simple_machines_forum	1.1	1.1.x
simplemachines / simple_machines_forum	1.0.7	1.0.7.x
simplemachines / simple_machines_forum	1.0.19	1.0.19.x
simplemachines / simple_machines_forum	1.0.10	1.0.10.x
simplemachines / simple_machines_forum	1.0-beta5	1.0-beta5.x
simplemachines / simple_machines_forum	2.0-beta2	2.0-beta2.x
simplemachines / simple_machines_forum	1.0.13	1.0.13.x
simplemachines / simple_machines_forum	1.0.1	1.0.1.x
simplemachines / simple_machines_forum	2.0.1	2.0.1.x
simplemachines / simple_machines_forum	1.1.2	1.1.2.x
simplemachines / simple_machines_forum	1.0.4	1.0.4.x
simplemachines / simple_machines_forum	1.1-beta1	1.1-beta1.x
simplemachines / simple_machines_forum	1.1-beta3	1.1-beta3.x
simplemachines / simple_machines_forum	2.0.6	2.0.6.x
simplemachines / simple_machines_forum	1.1.12	1.1.12.x
simplemachines / simple_machines_forum	1.1.13	1.1.13.x
simplemachines / simple_machines_forum	1.0.22	1.0.22.x
simplemachines / simple_machines_forum	2.0-rc1	2.0-rc1.x
simplemachines / simple_machines_forum	1.1.7	1.1.7.x
simplemachines / simple_machines_forum	1.1.4	1.1.4.x

Vulnerability Database

289,782

CVE-2013-7235