2 matches found
CVE-2020-18658
Cross Site Scriptiong XSS vulnerability in GetSimpleCMS =3.3.15 via the timezone parameter to settings.php...
CVE-2020-18658
CVE-2020-18658 is a cross-site scripting vulnerability in GetSimpleCMS, affecting versions ≤ 3.3.15. The XSS is triggered via the timezone parameter in settings.php, allowing an attacker to inject malicious script. Connected sources also reference that GetSimple CMS versions earlier than 3.3.16 a...