2 matches found
CVE-2020-21353
A stored cross site scripting XSS vulnerability in /admin/snippets.php of GetSimple CMS 3.4.0a allows attackers to execute arbitrary web scripts or HTML via crafted payload in the Edit Snippets module...
CVE-2020-21353
CVE-2020-21353 affects GetSimple CMS version 3.4.0a. A stored XSS exists in /admin/snippets.php via crafted payload in the Edit Snippets module, enabling execution of arbitrary web scripts/HTML if a user views the crafted content. No exploitation details or fixes are provided in the supplied docu...