📦 Getsimplecms
by Get Simple
🔍 What is Getsimplecms?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability in GetSimpleCMS v3.4.0a allows remote attackers to execute arbitrary code via a crafted payload to phpinfo(). Attackers can achieve remote code execution (RCE) on affected systems, ...
CVE-2020-18191 is a directory traversal vulnerability in GetSimpleCMS 3.3.15 that allows remote attackers to delete arbitrary files via the /admin/log.php endpoint. This affects all GetSimpleCMS 3.3.1...
CVE-2021-47778 is a PHP code injection vulnerability in GetSimple CMS My SMTP Contact Plugin 1.1.2 that allows authenticated administrators to execute arbitrary code on the server through plugin confi...
This CVE describes an authenticated remote code execution vulnerability in GetSimpleCMS 3.2.1 where authenticated users can upload malicious PHP files disguised with .pht extensions or other polyglot ...
This stored XSS vulnerability in GetSimple CMS My SMTP Contact Plugin allows attackers to inject malicious JavaScript that executes in administrators' browsers. Attackers can bypass the plugin's htmls...
CVE-2021-47860 is a CSRF vulnerability in GetSimple CMS Custom JS 0.1 plugin that allows unauthenticated attackers to inject malicious JavaScript into administrator sessions. When an authenticated adm...
CVE-2021-47830 is a CSRF vulnerability in GetSimple CMS My SMTP Contact Plugin 1.1.1 that allows attackers to trick authenticated administrators into changing SMTP configuration settings via malicious...
This vulnerability in GetSimpleCMS allows attackers to perform cross-site request forgery (CSRF) attacks via the /admin/profile.php file, potentially tricking authenticated administrators into executi...