GetSimple CMS is an XML-based, fully independent and streamlined content management system. /admin/snippets.php in GetSimple CMS version 3.4.0a is vulnerable to a stored cross-site scripting vulnerability, which can be exploited by attackers to execute arbitrary Web scripts or HTML via the Edit Snippets module.