Simple Machines Forum <= 2.0.5 (but > 1.1.*) is vulnerable to one or
more (currently undocumented) security issues.
The changes between v2.0.4 and 2.0.5 can be reviewed at
This is just a heads up, I haven't tried to look into those in detail.
CVE folks: If you'll handle this, please also check the last ones:
Naumann IT Security Consulting