Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-67163
CVE-2025-67163
A stored cross-site scripting (XSS) vulnerability in Simple Machines Forum v2.1.6 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Forum Name parameter.
Published Dec 20, 2025
https://github.com/mbiesiad/vulnerability-research/tree/main/CVE-2025-67163
CVSS Score
Medium
6.1
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
composer
simplemachines/smf
v2.1.6
1-1 of 1
CVE-2025-67163 | Components Impacted | Sonatype Guide | Sonatype Guide
