Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Getsimplecms
(Get\-Simple)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 15 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-06-23 | CVE-2020-20389 | Cross Site Scripting (XSS) vulnerability in GetSimpleCMS 3.4.0a in admin/edit.php. | Getsimplecms | 4.8 | ||
| 2021-06-23 | CVE-2020-20391 | Cross Site Scripting vulnerability in GetSimpleCMS 3.4.0a in admin/snippets.php via (1) Add Snippet and (2) Save snippets. | Getsimplecms | 5.4 | ||
| 2021-06-23 | CVE-2020-18658 | Cross Site Scriptiong (XSS) vulnerability in GetSimpleCMS <=3.3.15 via the timezone parameter to settings.php. | Getsimplecms | 6.1 | ||
| 2021-06-23 | CVE-2020-18659 | Cross Site Scripting vulnerability in GetSimpleCMS <=3.3.15 via the (1) sitename, (2) username, and (3) email parameters to /admin/setup.php | Getsimplecms | 6.1 | ||
| 2020-10-02 | CVE-2020-18191 | GetSimpleCMS-3.3.15 is affected by directory traversal. Remote attackers are able to delete arbitrary files via /GetSimpleCMS-3.3.15/admin/log.php | Getsimplecms | 9.1 |