CVE-2019-11574

moderate-risk

Published 2020-03-20

An issue was discovered in Simple Machines Forum (SMF) before release 2.0.17. There is SSRF related to Subs-Package.php and Subs.php because user-supplied data is used directly in curl calls.

Do I need to act?

0.66% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (1)

Simple Machine Forum

Affected Vendors

Simplemachines

References (4)

Exploit https://pastebin.com/raw/prE3iiLm

Release Notes https://www.simplemachines.org/community/index.php?board=1.0

Exploit https://pastebin.com/raw/prE3iiLm

Release Notes https://www.simplemachines.org/community/index.php?board=1.0

/ 100

moderate-risk

Severity 32/34 · Critical

Exploitability 2/34 · Minimal

Exposure 5/34 · Minimal