Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
getsimple cms vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2017-8081
Poor cryptographic salt initialization in admin/inc/template_functions.php in GetSimple CMS 3.3.13 allows a network malicious user to escalate privileges to an arbitrary user or conduct CSRF attacks via calculation of a session cookie or CSRF nonce.
Cagintranetworks Getsimple Cms 3.3.13
5
CVSSv2
CVE-2014-8722
GetSimple CMS 3.3.4 allows remote malicious users to obtain sensitive information via a direct request to (1) data/users/<username>.xml, (2) backups/users/<username>.xml.bak, (3) data/other/authorization.xml, or (4) data/other/appid.xml.
Get-simple Getsimple Cms 3.3.4
5
CVSSv2
CVE-2014-8723
GetSimple CMS 3.3.4 allows remote malicious users to obtain sensitive information via a direct request to (1) plugins/anonymous_data.php or (2) plugins/InnovationPlugin.php, which reveals the installation path in an error message.
Get-simple Getsimple Cms 3.3.4
4.3
CVSSv2
CVE-2015-5355
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS prior to 3.3.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) post-content or (2) post-title parameter to admin/edit.php.
Get-simple Getsimple Cms
4.3
CVSSv2
CVE-2015-5356
Cross-site scripting (XSS) vulnerability in admin/filebrowser.php in GetSimple CMS prior to 3.3.6 allows remote malicious users to inject arbitrary web script or HTML via the func parameter.
Get-simple Getsimple Cms
5
CVSSv2
CVE-2014-8790
XML external entity (XXE) vulnerability in admin/api.php in GetSimple CMS 3.1.1 up to and including 3.3.x prior to 3.3.5 Beta 1, when in certain configurations, allows remote malicious users to read arbitrary files via the data parameter.
Get-simple Getsimple Cms 3.3.2
Get-simple Getsimple Cms 3.2
Cagintranetworks Getsimple Cms 3.3.3
Cagintranetworks Getsimple Cms 3.3.4
Get-simple Getsimple Cms 3.1.1
Get-simple Getsimple Cms 3.1.2
Get-simple Getsimple Cms 3.2.1
Get-simple Getsimple Cms 3.2.2
Get-simple Getsimple Cms 3.3.0
Get-simple Getsimple Cms 3.2.3
Get-simple Getsimple Cms 3.3.1
4.3
CVSSv2
CVE-2014-1603
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) param parameter to admin/load.php or (2) user, (3) email, or (4) name parameter in a Save Settings action to admin/settings.p...
Get-simple Getsimple Cms 3.3.1
1 EDB exploit
4.3
CVSSv2
CVE-2013-7243
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.1.2 and 3.2.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) post-menu field to edit.php or (2) Display name field to settings.php. NOTE: The Custom Permalink Structure and Ema...
Get-simple Getsimple Cms 3.1.2
Get-simple Getsimple Cms 3.2.3
4.3
CVSSv2
CVE-2012-6621
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.1, 3.1.2, 3.2.3, and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) Email Address or (2) Custom Permalink Structure fields in admin/settings.php; (3) path par...
Get-simple Getsimple Cms 1.3
Get-simple Getsimple Cms 1.4
Get-simple Getsimple Cms 2.03.1
Get-simple Getsimple Cms 3.0
Get-simple Getsimple Cms
Get-simple Getsimple Cms 1.5
Get-simple Getsimple Cms 1.6
Get-simple Getsimple Cms 3.1
Get-simple Getsimple Cms 3.1.1
Get-simple Getsimple Cms 1.0
Get-simple Getsimple Cms 1.1
Get-simple Getsimple Cms 1.7
Get-simple Getsimple Cms 1.71
Get-simple Getsimple Cms 3.1.2
Get-simple Getsimple Cms 3.2
Get-simple Getsimple Cms 1.2
Get-simple Getsimple Cms 1.25
Get-simple Getsimple Cms 2.0
Get-simple Getsimple Cms 2.01
Get-simple Getsimple Cms 2.03
Get-simple Getsimple Cms 3.2.1
Get-simple Getsimple Cms 3.2.2
NA
CVE-2013-14201
GetSimple CMS version 3.1.2 suffers from multiple cross site scripting vulnerabilities.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »