CVE-2013-0192: Infoleak

Q: What is the severity of CVE-2013-0192?

The severity of CVE-2013-0192 is medium with a severity value of 4.9.

Q: How does File Disclosure in SMF (SimpleMachines Forum) <= 2.0.3 vulnerability work?

The vulnerability allows a forum administrator to read files, such as the database configuration, on the server.

Q: Which version of Simple Machines Forum is affected by CVE-2013-0192?

Simple Machines Forum version 2.0.3 and below are affected by CVE-2013-0192.

Q: What is the Common Weakness Enumeration (CWE) ID for CVE-2013-0192?

The CWE ID for CVE-2013-0192 is CWE-200.

Q: Are there any references available for CVE-2013-0192?

Yes, there are references available for CVE-2013-0192. Please refer to the following links: [Link 1](http://www.openwall.com/lists/oss-security/2013/01/17/5), [Link 2](http://www.openwall.com/lists/oss-security/2013/01/31/1), [Link 3](http://www.openwall.com/lists/oss-security/2013/02/01/4).

Published Feb 7, 2020

Updated

File Disclosure in SMF (SimpleMachines Forum) <= 2.0.3: Forum admin can read files such as the database config.

Affected Software

1 affected component

SimpleMachines Simple Machines Forum<=2.0.3

Event History

Feb 7, 2020

CVE Published

via MITRE·01:29 PM

Data Sourced

via MITRE·01:29 PM

DescriptionWeakness

Frequently Asked Questions

What is the severity of CVE-2013-0192?

The severity of CVE-2013-0192 is medium with a severity value of 4.9.

How does File Disclosure in SMF (SimpleMachines Forum) <= 2.0.3 vulnerability work?

The vulnerability allows a forum administrator to read files, such as the database configuration, on the server.

Which version of Simple Machines Forum is affected by CVE-2013-0192?

Simple Machines Forum version 2.0.3 and below are affected by CVE-2013-0192.

What is the Common Weakness Enumeration (CWE) ID for CVE-2013-0192?

The CWE ID for CVE-2013-0192 is CWE-200.

Are there any references available for CVE-2013-0192?