Simple Machines Forum Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in Simple Machines Forum (SMF) version 2.1.6. This vulnerability allows attackers to execute arbitrary web scripts or HTML by injecting a crafted payload into the Forum Name parameter. The issue arises from improper input validation, enabling the execution of malicious scripts when the statistics page is viewed.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed for any user visiting the statistics page, including both logged-in and anonymous users. This could lead to session theft, performing actions on behalf of the victim, or disclosing information, depending on the nature of the injected script.

Reproduction

To reproduce this vulnerability, an administrator must log into the affected SMF forum and navigate to the forum settings to change the Forum Name. Inject a script or HTML payload into the Forum Name field, then save the changes. Afterward, visit the statistics page, where the injected payload will be executed.