Lucene search
K

197 matches found

Prion
Prion
added 2024/03/01 5:15 p.m.14 views

Cross site request forgery (csrf)

Stupid Simple CMS v1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via the component /savesettings.php...

7.9AI score0.00225EPSS
Exploits1References1
Prion
Prion
added 2024/03/01 5:15 p.m.10 views

Cross site scripting

Stupid Simple CMS 1.2.4 is vulnerable to Cross Site Scripting XSS within the blog title of the settings...

6.5AI score0.00427EPSS
Exploits1References1
Prion
Prion
added 2024/03/01 5:15 p.m.13 views

Cross site request forgery (csrf)

Stupid Simple CMS v1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via /update-article.php...

8AI score0.00316EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/03/01 12:0 a.m.33 views

CVE-2024-27689

Stupid Simple CMS v1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via /update-article.php...

7.3AI score0.00316EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/03/01 12:0 a.m.12 views

CVE-2024-27558

Stupid Simple CMS 1.2.4 is vulnerable to Cross Site Scripting XSS within the blog title of the settings...

6AI score0.00427EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/03/01 12:0 a.m.3 views

Stupid Simple CMS Security Vulnerability

Stupid Simple CMS is a content management system by codelyfe individual developer. A security vulnerability exists in Stupid Simple CMS v1.2.4 and earlier versions, which stems from a cross-site request forgery CSRF vulnerability in component/savesettings.php...

6.3CVSS6.8AI score0.00225EPSS
Exploits1References2
CVE
CVE
added 2024/03/01 12:0 a.m.65 views

CVE-2024-27559

CVE-2024-27559 – Stupid Simple CMS : A CSRF vulnerability exists in Stupid Simple CMS v1.2.4 via the component /save_settings.php. The CVSS 3.1 base metrics indicate a MEDIUM severity (6.3) with network attack vector, low attack complexity, and LOW impact on confidentiality, integrity, and availa...

6.3CVSS7.4AI score0.00225EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/03/01 12:0 a.m.13 views

CVE-2024-27559

Stupid Simple CMS v1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via the component /savesettings.php...

7.7AI score0.00225EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/03/01 12:0 a.m.5 views

Stupid Simple CMS Security Vulnerability

Stupid Simple CMS is a content management system by codelyfe individual developer. A security vulnerability exists in Stupid Simple CMS v1.2.4, which stems from a cross-site request forgery CSRF vulnerability via /update-article.php...

8.8CVSS6.8AI score0.00316EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/03/01 12:0 a.m.5 views

Stupid Simple CMS Security Vulnerability

Stupid Simple CMS is a content management system by codelyfe individual developer. A security vulnerability exists in Stupid Simple CMS v1.2.4 and earlier versions, which stems from a cross-site scripting XSS vulnerability...

6.1CVSS5.9AI score0.00427EPSS
Exploits1References2
CVE
CVE
added 2024/03/01 12:0 a.m.70 views

CVE-2024-27689

The vulnerability CVE-2024-27689 affects Stupid Simple CMS v1.2.4 and is a Cross-Site Request Forgery (CSRF) via /update-article.php. CVSSv3.1 base score 8.8 ( HIGH ); attack vector Network, privileges required NONE, user interaction REQUIRED, confidentiality/ integrity/ availability HIGH. Connec...

8.8CVSS7.4AI score0.00316EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/03/01 12:0 a.m.79 views

CVE-2024-27558

CVE-2024-27558 affects Stupid Simple CMS 1.2.4. The vulnerability is a Cross Site Scripting (XSS) flaw in the blog title field within the settings UI. Affected software is the Stupid Simple CMS product; the exact vulnerable component is the blog title input handling in the settings page. The desc...

6.1CVSS5.9AI score0.00427EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/01/17 6:15 p.m.4 views

CVE-2024-22715

Stupid Simple CMS =1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin-edit.php...

8.8CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2024/01/17 6:15 p.m.25 views

CVE-2024-22715

Stupid Simple CMS =1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin-edit.php...

8.8CVSS8.9AI score0.00303EPSS
Exploits1References1
NVD
NVD
added 2024/01/17 6:15 p.m.17 views

CVE-2024-22714

Stupid Simple CMS =1.2.4 is vulnerable to Cross Site Scripting XSS in the editing section of the article content...

6.1CVSS6AI score0.00376EPSS
Exploits1References1
Prion
Prion
added 2024/01/17 6:15 p.m.16 views

Cross site scripting

Stupid Simple CMS =1.2.4 is vulnerable to Cross Site Scripting XSS in the editing section of the article content...

5.8CVSS6.2AI score0.00376EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2024/01/17 6:15 p.m.18 views

Cross site request forgery (csrf)

Stupid Simple CMS =1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin-edit.php...

6.8CVSS7.8AI score0.00303EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2024/01/17 12:0 a.m.5 views

Stupid Simple CMS Security Vulnerability

Stupid Simple CMS is a content management system by codelyfe individual developer. A security vulnerability exists in Stupid Simple CMS version 1.2.4, which contains a cross-site request forgery CSRF vulnerability via the component /admin-edit.php...

8.8CVSS6.8AI score0.00303EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/01/17 12:0 a.m.3 views

CVE-2024-22714

Stupid Simple CMS =1.2.4 is vulnerable to Cross Site Scripting XSS in the editing section of the article content...

6AI score0.00376EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/01/17 12:0 a.m.18 views

CVE-2024-22714

Stupid Simple CMS =1.2.4 is vulnerable to Cross Site Scripting XSS in the editing section of the article content...

6.2AI score0.00376EPSS
Exploits1References1
Rows per page
Query Builder