📦 Getsimple Cms

GetSimple CMS CE 3.3.19 has a critical vulnerability in its template editing function that allows authenticated attackers to execute arbitrary code on the server. This affects all installations runnin...

GetSimple CMS has a path traversal vulnerability in its Uploaded Files feature that allows attackers to read arbitrary files on the server. This affects all versions of GetSimple CMS and has not been ...

This vulnerability allows authenticated users with Edit component access in GetSimple CMS to inject arbitrary PHP code into component files, leading to remote code execution. It affects GetSimple CMS ...

GetSimple CMS CE 3.3.19 contains a Server-Side Request Forgery (SSRF) vulnerability in its backend plugin module. This allows authenticated attackers to make arbitrary HTTP requests from the server, p...

This SSRF vulnerability in GetSimple CMS CE 3.3.19 allows attackers to make the server send requests to internal systems through the plugin download functionality in the admin panel. It affects admini...

GetSimple CMS is vulnerable to cross-site scripting (XSS) through SVG file uploads. Authenticated users can upload malicious SVG files containing JavaScript that executes when viewed in a browser. All...