CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

462 matches found

OSV•added 2021/08/06 11:15 p.m.•1 views

CVE-2020-21353

A stored cross site scripting XSS vulnerability in /admin/snippets.php of GetSimple CMS 3.4.0a allows attackers to execute arbitrary web scripts or HTML via crafted payload in the Edit Snippets module...

5.4CVSS5.6AI score0.00549EPSS

Exploits1References1

NVD•added 2021/08/06 11:15 p.m.•15 views

CVE-2020-21353

5.4CVSS0.00549EPSS

Exploits1References1

Prion•added 2021/08/06 11:15 p.m.•16 views

Cross site scripting

3.5CVSS5.4AI score0.00549EPSS

Exploits1References1Affected Software1

Cvelist•added 2021/08/06 10:36 p.m.•11 views

CVE-2020-21353

5.4AI score0.00549EPSS

Exploits1References1

CVE•added 2021/08/06 10:36 p.m.•86 views

CVE-2020-21353

CVE-2020-21353 affects GetSimple CMS version 3.4.0a. A stored XSS exists in /admin/snippets.php via crafted payload in the Edit Snippets module, enabling execution of arbitrary web scripts/HTML if a user views the crafted content. No exploitation details or fixes are provided in the supplied docu...

5.4CVSS5.4AI score0.00549EPSS

Exploits1References1Affected Software1

CNNVD•added 2021/08/06 12:0 a.m.•3 views

GetSimple CMS 跨站脚本漏洞

GetSimple CMS is an XML-based, fully independent and streamlined content management system. /admin/snippets.php in GetSimple CMS version 3.4.0a is vulnerable to a stored cross-site scripting vulnerability, which can be exploited by attackers to execute arbitrary Web scripts or HTML via the Edit...

5.4CVSS5.5AI score0.00549EPSS

Exploits1References1

CNVD•added 2021/06/25 12:0 a.m.•6 views

GetSimple CMS Open Redirect Vulnerability (CNVD-2021-46556)

GetSimple CMS is an XML-based, completely self-contained, streamlined content management system. An open redirect vulnerability exists in admin/changedata.php in GetSimple CMS 3.3.15 and earlier versions. An attacker can redirect a user to a url parameter via the redirect function...

6.1CVSS6.6AI score0.01285EPSS

Exploits1References1

CNVD•added 2021/06/25 12:0 a.m.•6 views

GetSimple CMS Cross-Site Scripting Vulnerability (CNVD-2021-45441)

GetSimple CMS is an XML-based, completely self-contained, streamlined content management system. A cross-site scripting vulnerability exists in GetSimple CMS 3.3.15 and earlier versions. The vulnerability can be exploited to conduct cross-site scripting attacks via the timezone parameter of...

6.1CVSS6.1AI score0.01371EPSS

Exploits1References1

CNVD•added 2021/06/25 12:0 a.m.•7 views

GetSimple CMS Cross-Site Scripting Vulnerability (CNVD-2021-46555)

GetSimple CMS is an XML-based, completely self-contained, streamlined content management system. A cross-site scripting vulnerability exists in admin/changedata.php in GetSimple CMS 3.3.15 and earlier versions. The vulnerability can be exploited to conduct cross-site scripting attacks via the...

6.1CVSS6.1AI score0.01371EPSS

Exploits1References1

CNVD•added 2021/06/25 12:0 a.m.•7 views

GetSimple CMS Cross-Site Scripting Vulnerability

6.1CVSS6.1AI score0.01298EPSS

Exploits1References1

CNVD•added 2021/06/24 12:0 a.m.•8 views

GetSimple CMS Cross-Site Scripting Vulnerability (CNVD-2021-45144)

GetSimple CMS is an XML-based, completely self-contained, streamlined content management system. A cross-site scripting vulnerability exists in admin/snippets.php in GetSimple CMS version 3.4.0a. An attacker can exploit this vulnerability via Add Snippet and Save snippets to conduct cross-site...

5.4CVSS6.1AI score0.00581EPSS

Exploits1References1

CNVD•added 2021/06/24 12:0 a.m.•7 views

GetSimple CMS Cross-Site Scripting Vulnerability (CNVD-2021-45143)

GetSimple CMS is an XML-based, completely self-contained, streamlined content management system. A cross-site scripting vulnerability exists in admin/edit.php in GetSimple CMS version 3.4.0a. An attacker can exploit this vulnerability to conduct a cross-site scripting attack...

4.8CVSS6AI score0.00589EPSS

Exploits1References1

CNVD•added 2021/06/24 12:0 a.m.•10 views

GetSimple CMS Remote Code Execution Vulnerability (CNVD-2021-45301)

GetSimple CMS is an XML-based, completely self-contained, streamlined content management system. A remote code execution vulnerability exists in admin/upload.php in GetSimple CMS versions prior to 3.3.16. An attacker can exploit this vulnerability to achieve remote code execution via phar files...

7.2CVSS7.5AI score0.07548EPSS

Exploits3References1

CNVD•added 2021/06/24 12:0 a.m.•5 views

GetSimple CMS Cross-Site Scripting Vulnerability (CNVD-2021-45142)

GetSimple CMS is an XML-based, completely self-contained, streamlined content management system. A cross-site scripting vulnerability exists in admin/upload.php in GetSimple CMS version 3.3.16. The vulnerability can be exploited to conduct cross-site scripting attacks by adding comments to the...

4.8CVSS6.1AI score0.00506EPSS

Exploits0References1

CNNVD•added 2021/06/23 12:0 a.m.•3 views

getsimplecms 跨站脚本漏洞

6.1CVSS5.2AI score0.01371EPSS

Exploits1References3

CNNVD•added 2021/06/23 12:0 a.m.•3 views

getsimplecms 跨站脚本漏洞

5.4CVSS5.2AI score0.00581EPSS

Exploits1References1

CNNVD•added 2021/06/23 12:0 a.m.•2 views

GetSimpleCMS 输入验证错误漏洞