Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
Get-simpleGetsimplecms*

6 matches found

CVE
CVEadded 2021/06/23 7:15 p.m.64 views

CVE-2020-18658

Cross Site Scriptiong (XSS) vulnerability in GetSimpleCMS <=3.3.15 via the timezone parameter to settings.php.

6.1CVSS6.2AI score0.00375EPSS
CVE
CVEadded 2021/06/23 7:15 p.m.63 views

CVE-2020-18659

Cross Site Scripting vulnerability in GetSimpleCMS <=3.3.15 via the (1) sitename, (2) username, and (3) email parameters to /admin/setup.php

6.1CVSS6.3AI score0.00375EPSS
CVE
CVEadded 2021/06/23 9:15 p.m.58 views

CVE-2020-18660

GetSimpleCMS <=3.3.15 has an open redirect in admin/changedata.php via the redirect function to the url parameter.

6.1CVSS6.5AI score0.00324EPSS
CVE
CVEadded 2021/06/23 7:15 p.m.49 views

CVE-2020-18657

Cross Site Scripting (XSS) vulnerability in GetSimpleCMS <= 3.3.15 in admin/changedata.php via the redirect_url parameter and the headers_sent function.

6.1CVSS6.1AI score0.00375EPSS
CVE
CVEadded 2021/06/23 1:15 p.m.35 views

CVE-2021-28976

Remote Code Execution vulnerability in GetSimpleCMS before 3.3.16 in admin/upload.php via phar filess.

7.2CVSS7.4AI score0.10057EPSS
CVE
CVEadded 2021/06/23 1:15 p.m.25 views

CVE-2021-28977

Cross Site Scripting vulnerability in GetSimpleCMS 3.3.16 in admin/upload.php by adding comments or jpg and other file header information to the content of xla, pages, and gzip files,

4.8CVSS5.2AI score0.00235EPSS