Lucene search
Simple Cms Security Vulnerabilities
cve
SQL injection vulnerability in indexen.php in Simple CMS 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the area parameter.
8.4AI Score
0.001EPSS
2008-02-20 09:44 PM
22
cve
An issue was discovered in daveismyname simple-cms through 2014-03-11. There is a CSRF vulnerability that can delete any page via admin/?delpage=8.
8.8CVSS
8.6AI Score
0.001EPSS
2018-08-20 01:29 AM
17
cve
An issue was discovered in daveismyname simple-cms through 2014-03-11. admin/addpage.php does not require authentication for adding a page. This can also be exploited via CSRF.
8.8CVSS
8.7AI Score
0.002EPSS
2018-08-20 01:29 AM
20