Unrated severityNVD Advisory· Published Jul 21, 2007· Updated Jun 16, 2026
CVE-2007-3942
CVE-2007-3942
Description
Directory traversal vulnerability in index.php in Simple Machines Forum (SMF) 1.1.3 allows remote attackers to include local files via unspecified vectors related to the sourcedir parameter or the actionArray hash. NOTE: CVE and multiple third parties dispute this vulnerability because both sourcedir and actionArray are defined before use
Affected products
2cpe:2.3:a:simple_machines:simple_machines_forum:1.1.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:simple_machines:simple_machines_forum:1.1.3:*:*:*:*:*:*:*
- (no CPE)range: =1.1.3
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.