Getsimple Cms Security Vulnerabilities and Issues — Getsimple Cms CVE List

Lucene search

Get-simpleGetsimple Cms

6 matches found

CVE•added 2019/09/15 10:15 p.m.•73 views

CVE-2019-16333

GetSimple CMS v3.3.15 has Persistent Cross-Site Scripting (XSS) in admin/theme-edit.php.

5.4CVSS5.3AI score0.00206EPSS

CVE•added 2022/04/27 8:15 a.m.•41 views

CVE-2022-1503

A vulnerability, which was classified as problematic, has been found in GetSimple CMS. Affected by this issue is the file /admin/edit.php of the Content Module. The manipulation of the argument post-content with an input like leads to cross site scripting. The attack may be launched remotely but r...

5.4CVSS4.5AI score0.00175EPSS

CVE•added 2015/01/20 3:59 p.m.•38 views

CVE-2014-8790

XML external entity (XXE) vulnerability in admin/api.php in GetSimple CMS 3.1.1 through 3.3.x before 3.3.5 Beta 1, when in certain configurations, allows remote attackers to read arbitrary files via the data parameter.

5CVSS6.9AI score0.00657EPSS

CVE•added 2020/10/01 2:15 p.m.•31 views

CVE-2020-24861

GetSimple CMS 3.3.16 allows in parameter 'permalink' on the Settings page persistent Cross Site Scripting which is executed when you create and open a new page

5.4CVSS5.3AI score0.00353EPSS

CVE•added 2018/12/31 3:29 p.m.•29 views

CVE-2018-19845

There is Stored XSS in GetSimple CMS 3.3.12 via the admin/edit.php "post-menu" parameter, a related issue to CVE-2018-16325.

5.4CVSS5.5AI score0.00223EPSS

CVE•added 2017/03/17 2:59 p.m.•27 views

CVE-2014-8723

GetSimple CMS 3.3.4 allows remote attackers to obtain sensitive information via a direct request to (1) plugins/anonymous_data.php or (2) plugins/InnovationPlugin.php, which reveals the installation path in an error message.

5.3CVSS5.1AI score0.00261EPSS