Lucene search
+L

197 matches found

NVD
NVD
added 2023/12/17 4:15 p.m.25 views

CVE-2023-6902

A vulnerability has been found in codelyfe Stupid Simple CMS up to 1.2.4 and classified as critical. This vulnerability affects unknown code of the file /file-manager/upload.php. The manipulation of the argument file leads to unrestricted upload. The exploit has been disclosed to the public and m...

9.8CVSS0.00972EPSS
Exploits1References3
Prion
Prion
added 2023/12/17 4:15 p.m.12 views

Design/Logic Flaw

A vulnerability has been found in codelyfe Stupid Simple CMS up to 1.2.4 and classified as critical. This vulnerability affects unknown code of the file /file-manager/upload.php. The manipulation of the argument file leads to unrestricted upload. The exploit has been disclosed to the public and m...

5.2CVSS7.3AI score0.00972EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/12/17 3:31 p.m.26 views

CVE-2023-6902 codelyfe Stupid Simple CMS upload.php unrestricted upload

A vulnerability has been found in codelyfe Stupid Simple CMS up to 1.2.4 and classified as critical. This vulnerability affects unknown code of the file /file-manager/upload.php. The manipulation of the argument file leads to unrestricted upload. The exploit has been disclosed to the public and m...

5.5CVSS9.8AI score0.00972EPSS
Exploits1References3
CVE
CVE
added 2023/12/17 3:31 p.m.37 views

CVE-2023-6902

CVE-2023-6902 affects codelyfe Stupid Simple CMS up to version 1.2.4. The vulnerability resides in the file /file-manager/upload.php, where manipulation of the file parameter enables unrestricted file upload. The description indicates the exploit has been disclosed publicly, posing a risk of remo...

9.8CVSS7.7AI score0.00972EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/12/17 2:15 p.m.17 views

CVE-2023-6901

A vulnerability, which was classified as critical, was found in codelyfe Stupid Simple CMS up to 1.2.3. This affects an unknown part of the file /terminal/handle-command.php of the component HTTP POST Request Handler. The manipulation of the argument command with the input whoami leads to os...

9.8CVSS7.5AI score0.02864EPSS
Exploits1References3
NVD
NVD
added 2023/12/17 2:15 p.m.27 views

CVE-2023-6901

A vulnerability, which was classified as critical, was found in codelyfe Stupid Simple CMS up to 1.2.3. This affects an unknown part of the file /terminal/handle-command.php of the component HTTP POST Request Handler. The manipulation of the argument command with the input whoami leads to os...

9.8CVSS0.02864EPSS
Exploits1References3
Prion
Prion
added 2023/12/17 2:15 p.m.16 views

Command injection

A vulnerability, which was classified as critical, was found in codelyfe Stupid Simple CMS up to 1.2.3. This affects an unknown part of the file /terminal/handle-command.php of the component HTTP POST Request Handler. The manipulation of the argument command with the input whoami leads to os...

7.5CVSS7.8AI score0.02864EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/12/17 2:0 p.m.33 views

CVE-2023-6901 codelyfe Stupid Simple CMS HTTP POST Request handle-command.php os command injection

A vulnerability, which was classified as critical, was found in codelyfe Stupid Simple CMS up to 1.2.3. This affects an unknown part of the file /terminal/handle-command.php of the component HTTP POST Request Handler. The manipulation of the argument command with the input whoami leads to os...

7.5CVSS10AI score0.02864EPSS
Exploits1References3
CVE
CVE
added 2023/12/17 2:0 p.m.35 views

CVE-2023-6901

CVE-2023-6901 affects codelyfe Stupid Simple CMS versions up to 1.2.3. The vulnerability lies in the HTTP POST Request Handler’s file /terminal/handle-command.php, where using the argument with input “whoami” enables an OS command injection. The issue is exploitable remotely and an exploit has be...

9.8CVSS9AI score0.02864EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/12/17 12:0 a.m.3 views

Stupid Simple CMS Operating System Command Injection Vulnerability

Stupid Simple CMS is a content management system by codelyfe individual developer. Stupid Simple CMS 1.2.3 and earlier versions have an operating system command injection vulnerability, which stems from an operating system command injection vulnerability in the file /terminal/handle-command.php...

9.8CVSS7.5AI score0.02864EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/12/17 12:0 a.m.1 views

Stupid Simple CMS Code Issue Vulnerability

Stupid Simple CMS is a content management system by codelyfe individual developer. A code issue vulnerability exists in Stupid Simple CMS 1.2.4 and earlier versions, which stems from an arbitrary file upload vulnerability in file/file manager/upload.php...

9.8CVSS7.3AI score0.00972EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2023/10/19 3:15 p.m.4 views

CVE-2023-46042

An issue in GetSimpleCMS v.3.4.0a allows a remote attacker to execute arbitrary code via a crafted payload to the phpinfo...

9.8CVSS6.2AI score0.22611EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2023/05/03 12:0 a.m.294 views

PHPJabbers Simple CMS 5.0 Cross Site Scripting

Exploit Title: PHPJabbers Simple CMS V5.0 - Stored Cross-Site Scripting XSS Date: 2023-04-29 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.phpjabbers.com/faq.php Software Link: https://www.phpjabbers.com/simple-cms/ Version: 5.0 Tested on: Kali Linux Steps to Reproduce - Please...

6.9AI score
Exploits0
0day.today
0day.today
added 2023/05/02 12:0 a.m.256 views

PHPJabbers Simple CMS V5.0 - Stored Cross-Site Scripting Vulnerability

Exploit Title: PHPJabbers Simple CMS V5.0 - Stored Cross-Site Scripting XSS Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.phpjabbers.com/faq.php Software Link: https://www.phpjabbers.com/simple-cms/ Version: 5.0 Tested on: Kali Linux Steps to Reproduce - Please login from this...

6.9AI score
Exploits0
0day.today
0day.today
added 2023/05/02 12:0 a.m.279 views

PHPJabbers Simple CMS 5.0 - SQL Injection Vulnerability

Exploit Title: PHPJabbers Simple CMS 5.0 - SQL Injection Date: 2023-04-29 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.phpjabbers.com/faq.php Software Link: https://www.phpjabbers.com/simple-cms/ Version: 5.0 Tested on: Kali Linux Request GET...

6.9AI score
Exploits0
Exploit DB
Exploit DB
added 2023/05/02 12:0 a.m.258 views

PHPJabbers Simple CMS V5.0 - Stored Cross-Site Scripting (XSS)

Exploit Title: PHPJabbers Simple CMS V5.0 - Stored Cross-Site Scripting XSS Date: 2023-04-29 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.phpjabbers.com/faq.php Software Link: https://www.phpjabbers.com/simple-cms/ Version: 5.0 Tested on: Kali Linux Steps to Reproduce - Please...

7.4AI score
Exploits0
0day.today
0day.today
added 2021/11/03 12:0 a.m.172 views

Simplephpscripts Simple CMS 2.1 - (Multiple) Stored Cross-Site Scripting Vulnerability

Exploit Title: Simplephpscripts Simple CMS 2.1 - 'Multiple' Stored Cross-Site Scripting XSS Vendor Homepage: https://simplephpscripts.com/simple-cms-php Version: 2.1 Product & Service Introduction: =============================== The system could be used only in already existing websites to contr...

7.1AI score
Exploits0
0day.today
0day.today
added 2021/11/03 12:0 a.m.353 views

PHPJabbers Simple CMS 5 - (name) Persistent Cross-Site Scripting Vulnerability

Exploit Title: PHPJabbers Simple CMS 5 - 'name' Persistent Cross-Site Scripting XSS Google Dork: subtitle:Copyright © 2021 PHPJabbers.com Date: 2021-10-28 Exploit Author: Vulnerability-Lab Vendor Homepage: https://www.phpjabbers.com/faq.php Software Link: https://www.phpjabbers.com/simple-cms/...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/10/26 12:0 a.m.405 views

Simplephpscripts Simple CMS 2.1 SQL Injection

Document Title: =============== Simplephpscripts Simple CMS v2.1 - SQL Injection References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2303 Release Date: ============= 2021-10-19 Vulnerability Laboratory ID VL-ID: ==================================== 2303...

0.5AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2021/10/18 12:0 a.m.75 views

Simplephpscripts Simple CMS v2.1 - Persistent Vulnerability

Document Title: =============== Simplephpscripts Simple CMS v2.1 - Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2302 Release Date: ============= 2021-10-18 Vulnerability Laboratory ID VL-ID: ==================================...

7.4AI score
Exploits0
Rows per page
Query Builder