Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/22 5:34 p.m.7 views

CVE-2021-47870

GetSimple CMS My SMTP Contact Plugin 1.1.2 suffers from a Stored Cross-Site Scripting XSS vulnerability. The plugin attempts to sanitize user input using htmlspecialchars, but this can be bypassed by passing dangerous characters as escaped hex bytes. This allows attackers to inject arbitrary...

5.4CVSS5.8AI score0.00229EPSS
Exploits1References1
OSV
OSV
added 2026/01/21 6:16 p.m.10 views

CVE-2021-47870

GetSimple CMS My SMTP Contact Plugin 1.1.2 suffers from a Stored Cross-Site Scripting XSS vulnerability. The plugin attempts to sanitize user input using htmlspecialchars, but this can be bypassed by passing dangerous characters as escaped hex bytes. This allows attackers to inject arbitrary...

5.4CVSS5.9AI score0.00229EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/21 5:32 p.m.3 views

CVE-2021-47870 GetSimple CMS My SMTP Contact Plugin 1.1.2 - Stored XSS

GetSimple CMS My SMTP Contact Plugin 1.1.2 suffers from a Stored Cross-Site Scripting XSS vulnerability. The plugin attempts to sanitize user input using htmlspecialchars, but this can be bypassed by passing dangerous characters as escaped hex bytes. This allows attackers to inject arbitrary...

4.8CVSS5.8AI score0.00229EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/01/21 5:32 p.m.3 views

CVE-2021-47870

GetSimple CMS My SMTP Contact Plugin 1.1.2 suffers from a Stored Cross-Site Scripting XSS vulnerability. The plugin attempts to sanitize user input using htmlspecialchars, but this can be bypassed by passing dangerous characters as escaped hex bytes. This allows attackers to inject arbitrary...

5.8AI score0.00229EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder