Improper Variable Usage in MessageSearch2 Function in Simple Machines Forum (SMF) Allows Access Restriction Bypass

Improper Variable Usage in MessageSearch2 Function in Simple Machines Forum (SMF) Allows Access Restriction Bypass

CVE-2018-10305 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The MessageSearch2 function in PersonalMessage.php in Simple Machines Forum (SMF) before 2.0.15 does not properly use the possible_users variable in a query, which might allow attackers to bypass intended access restrictions.

Learn more about our User Device Pen Test.