CVE-2005-4891

CRITICAL

Simple Machine Forum <1.0.4 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-4891. PoCs published by GulfTech Security.

AI-analyzed exploit summary This Perl script exploits a SQL injection vulnerability in Simple Machine Forums (SMF) by injecting a UNION-based query to extract user password hashes. It authenticates as a valid user, retrieves a session ID, and then modifies a post URL to include malicious SQL syntax.

Description

Simple Machine Forum (SMF) versions 1.0.4 and earlier have an SQL injection vulnerability that allows remote attackers to inject arbitrary SQL statements.

Exploits (1)

exploitdb WORKING POC VERIFIED

by GulfTech Security · perlwebappsphp

https://www.exploit-db.com/exploits/1057

View Code ZIP pw:eip

This Perl script exploits a SQL injection vulnerability in Simple Machine Forums (SMF) by injecting a UNION-based query to extract user password hashes. It authenticates as a valid user, retrieves a session ID, and then modifies a post URL to include malicious SQL syntax.

Classification

Working Poc 95%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: Simple Machine Forums (SMF) - All Versions (as of 2005)

Auth required

Prerequisites: Valid user credentials · URL of a post the user can edit · Target user ID

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Mailing List, Third Party Advisory x_refsource_misc

http://www.openwall.com/lists/oss-security/2012/11/14/10

Exploit, Third Party Advisory x_refsource_misc

https://securiteam.com/exploits/5HP0N0KG0O/

Scores

CVSS v3 9.8

EPSS 0.0037

EPSS Percentile 59.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-89

Status published

Products (1)

simplemachines/simple_machine_forum < 1.0.4

Published Jan 15, 2020

Tracked Since Feb 18, 2026