📦 Cmsimple
by Cmsimple
🔍 What is Cmsimple?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CMSimple 5.16 contains a broken access control vulnerability that allows authenticated users to edit the log.php file via the print page functionality. This affects all installations of CMSimple 5.16 ...
CMSimple 5.4 contains a directory traversal vulnerability in config.php that allows attackers to manipulate file names to execute arbitrary code remotely. This affects all systems running CMSimple 5.4...
CMSimple 5.15 contains a remote command execution vulnerability where authenticated attackers can modify file extension settings to upload malicious PHP files. This allows execution of arbitrary code ...
CMSimple v5.16 has an insecure permissions vulnerability that allows remote attackers to download PHP backup files containing sensitive information. This affects all installations using the vulnerable...
This vulnerability in CMSimple v5.16 allows remote attackers to perform Server-Side Request Forgery (SSRF) attacks through the validate link function. Attackers can exploit this to access internal net...
This Cross-Site Scripting (XSS) vulnerability in CMSimple v5.15 allows attackers to inject malicious scripts into the Settings menu's Logout parameter under Language section. When exploited, it enable...
This cross-site scripting (XSS) vulnerability in CMSimple v5.15 allows attackers to inject malicious scripts into the Settings menu's Language Configuration parameter. When exploited, it enables execu...
This cross-site scripting (XSS) vulnerability in CMSimple v5.15 allows attackers to inject malicious scripts into the Settings menu's Downloads parameter under Language section. When exploited, it ena...