2 matches found
CVE-2021-47736
creationtimestamp| type| source ---|---|--- 2025-12-23 20:48:07+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3maomolmw2w2a 2025-12-23 21:26:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3maootcyyq42c...
CVE-2021-47736
CMSimpleXH 1.7.4 contains an authenticated remote code execution vulnerability in the content editing functionality that allows administrative users to upload malicious PHP files. Attackers with valid credentials can exploit the CSRF token mechanism to create a PHP shell file that enables arbitra...