CVEs-PoC/2011/CVE-2011-1127.md

### [CVE-2011-1127](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1127)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

SSI.php in Simple Machines Forum (SMF) before 1.1.13, and 2.x before 2.0 RC5, does not properly restrict guest access, which allows remote attackers to have an unspecified impact via unknown vectors.

### POC

#### Reference
- http://custom.simplemachines.org/mods/downloads/smf_patch_2.0-RC4_security.zip

#### Github
No PoCs found on GitHub currently.