Simple Machines Forum
Standard maintenance is sufficient
Simple Machines Forum has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
0.0%
Confirmed actively exploited (CISA)
0.0%
Public exploit code available
18.8%
Based on 16 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2022-26982 | 7.2 | 8.0% | — |
| CVE-2013-0192 | 4.9 | 5.9% | — |
| CVE-2009-5068 | 7.2 | 3.3% | — |
| CVE-2013-7466 | 8.8 | 1.4% | — |
| CVE-2016-5726 | 9.8 | 0.8% | — |
| CVE-2016-5727 | 8.8 | 0.6% | — |
| CVE-2013-7468 | 8.1 | 0.5% | — |
| CVE-2018-10305 | 9.8 | 0.4% | — |
| CVE-2019-12490 | 6.5 | 0.4% | — |
| CVE-2013-4395 | 6.1 | 0.3% | — |
| CVE-2013-7467 | 6.1 | 0.2% | — |
| CVE-2025-2582 | 3.5 | 0.2% | — |
| CVE-2025-2583 | 3.5 | 0.2% | — |
| CVE-2024-7438 | 4.3 | 0.1% | — |
| CVE-2024-7437 | 5.4 | 0.1% | — |
| CVE-2025-67163 | 6.1 | 0.1% | — |
10
/ 100
low-risk
Active Threat
0/50 · Minimal
Exploit Availability
10/50 · Low
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.