CVE-2010-5052
GetSimple CMS 2.01 is affected by a cross-site scripting (XSS) vulnerability in admin/components.php. The flaw arises from input sanitation in the val[] parameter, allowing remote attackers to inject arbitrary web script or HTML. Exploitation was demonstrated via a crafted POST to /admin/componen...