Lucene search
K

197 matches found

Cvelist
Cvelist
added 2024/01/17 12:0 a.m.18 views

CVE-2024-22714

Stupid Simple CMS =1.2.4 is vulnerable to Cross Site Scripting XSS in the editing section of the article content...

6.2AI score0.00376EPSS
Exploits1References1
CVE
CVE
added 2024/01/17 12:0 a.m.216 views

CVE-2024-22714

Stupid Simple CMS

6.1CVSS5.9AI score0.00376EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/01/17 12:0 a.m.26 views

CVE-2024-22715

Stupid Simple CMS =1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin-edit.php...

9.1AI score0.00303EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/01/17 12:0 a.m.1 views

CVE-2024-22715

Stupid Simple CMS =1.2.4 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin-edit.php...

8.9AI score0.00303EPSS
Exploits1References1
CVE
CVE
added 2024/01/17 12:0 a.m.213 views

CVE-2024-22715

Summary (from provided records): Stupid Simple CMS

8.8CVSS8.8AI score0.00303EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2023/12/21 8:15 p.m.21 views

CVE-2023-7041

A vulnerability, which was classified as critical, has been found in codelyfe Stupid Simple CMS up to 1.2.4. Affected by this issue is some unknown functionality of the file /file-manager/rename.php. The manipulation of the argument newName leads to path traversal: '../filedir'. The attack may be...

5.5CVSS0.00906EPSS
Exploits1References3
NVD
NVD
added 2023/12/21 8:15 p.m.17 views

CVE-2023-7040

A vulnerability classified as problematic was found in codelyfe Stupid Simple CMS up to 1.2.4. Affected by this vulnerability is an unknown functionality of the file /file-manager/rename.php. The manipulation of the argument oldName leads to path traversal: '../filedir'. The attack can be launche...

6.5CVSS0.00764EPSS
Exploits1References3
Prion
Prion
added 2023/12/21 8:15 p.m.19 views

Path traversal

A vulnerability, which was classified as critical, has been found in codelyfe Stupid Simple CMS up to 1.2.4. Affected by this issue is some unknown functionality of the file /file-manager/rename.php. The manipulation of the argument newName leads to path traversal: '../filedir'. The attack may be...

5.5CVSS7.1AI score0.00906EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2023/12/21 8:15 p.m.19 views

Path traversal

A vulnerability classified as problematic was found in codelyfe Stupid Simple CMS up to 1.2.4. Affected by this vulnerability is an unknown functionality of the file /file-manager/rename.php. The manipulation of the argument oldName leads to path traversal: '../filedir'. The attack can be launche...

4CVSS7.1AI score0.00764EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/12/21 8:0 p.m.29 views

CVE-2023-7041 codelyfe Stupid Simple CMS rename.php path traversal

A vulnerability, which was classified as critical, has been found in codelyfe Stupid Simple CMS up to 1.2.4. Affected by this issue is some unknown functionality of the file /file-manager/rename.php. The manipulation of the argument newName leads to path traversal: '../filedir'. The attack may be...

5.5CVSS5.8AI score0.00906EPSS
Exploits1References3
CVE
CVE
added 2023/12/21 8:0 p.m.56 views

CVE-2023-7041

CVE-2023-7041 details a path traversal vulnerability in codelyfe Stupid Simple CMS

5.5CVSS5.5AI score0.00906EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/12/21 7:31 p.m.61 views

CVE-2023-7040

CVE-2023-7040 affects codelyfe Stupid Simple CMS up to v1.2.4. The vulnerability is in /file-manager/rename.php where manipulation of the oldName argument enables path traversal to ../filedir. It can be exploited remotely and has public disclosure. The vulnerability is tracked as VDB-248689. Miti...

6.5CVSS5.5AI score0.00764EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/12/21 12:0 a.m.3 views

Stupid Simple CMS Security Vulnerability

Stupid Simple CMS is a content management system by codelyfe individual developer. A security vulnerability exists in Stupid Simple CMS 1.2.4 and earlier versions, which stems from a path traversal vulnerability in the file /file-manager/rename.php...

6.5CVSS6.8AI score0.00764EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/12/21 12:0 a.m.5 views

Stupid Simple CMS Security Vulnerability

Stupid Simple CMS is a content management system by codelyfe individual developer. A security vulnerability exists in Stupid Simple CMS 1.2.4 and earlier versions, which stems from a path traversal vulnerability in the file /file-manager/rename.php...

5.5CVSS6.8AI score0.00906EPSS
Exploits1References4
NVD
NVD
added 2023/12/18 4:15 a.m.20 views

CVE-2023-6907

A vulnerability has been found in codelyfe Stupid Simple CMS up to 1.2.4 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /file-manager/delete.php of the component Deletion Interface. The manipulation of the argument file leads to improper...

9.1CVSS0.01201EPSS
Exploits1References3
OSV
OSV
added 2023/12/18 4:15 a.m.17 views

CVE-2023-6907

A vulnerability has been found in codelyfe Stupid Simple CMS up to 1.2.4 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /file-manager/delete.php of the component Deletion Interface. The manipulation of the argument file leads to improper...

9.1CVSS6.9AI score0.01201EPSS
Exploits1References3
Prion
Prion
added 2023/12/18 4:15 a.m.18 views

Authentication flaw

A vulnerability has been found in codelyfe Stupid Simple CMS up to 1.2.4 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /file-manager/delete.php of the component Deletion Interface. The manipulation of the argument file leads to improper...

4.8CVSS7.1AI score0.01201EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/12/18 12:31 a.m.51 views

CVE-2023-6907

The CVE-2023-6907 entry concerns codelyfe Stupid Simple CMS (versions up to 1.2.4). The vulnerability affects the Deletion Interface’s file-manager delete.php, where manipulation of the file parameter leads to improper authentication. Public exploit details exist, indicating potential exploitatio...

9.1CVSS7.5AI score0.01201EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/12/18 12:0 a.m.6 views

Stupid Simple CMS Authorization Issues Vulnerability

Stupid Simple CMS is a content management system for codelyfe individual developers. Stupid Simple CMS 1.2.4 and earlier versions have an authorization issue vulnerability that stems from the parameter file in the file /file-manager/delete.php that causes incorrect authentication...

9.1CVSS6.8AI score0.01201EPSS
Exploits1References4
NVD
NVD
added 2023/12/17 4:15 p.m.22 views

CVE-2023-6902

A vulnerability has been found in codelyfe Stupid Simple CMS up to 1.2.4 and classified as critical. This vulnerability affects unknown code of the file /file-manager/upload.php. The manipulation of the argument file leads to unrestricted upload. The exploit has been disclosed to the public and m...

9.8CVSS0.00972EPSS
Exploits1References3
Rows per page
Query Builder