← Back to CVE List
CVE-2016-5726
Packages.php in Simple Machines Forum (SMF) 2.1 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the themechanges array parameter.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt