Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
get-simple vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-9173
Cross-site scripting (XSS) vulnerability in admin/template/js/uploadify/uploadify.swf in GetSimple CMS 3.3.13 allows remote malicious users to inject arbitrary web script or HTML, as demonstrated by the movieName parameter.
Get-simple Getsimple Cms 3.3.13
1 EDB exploit
6.1
CVSSv3
CVE-2017-10673
admin/profile.php in GetSimple CMS 3.x has XSS in a name field.
Get-simple Getsimple Cms 3.0
Get-simple Getsimple Cms 3.1
Get-simple Getsimple Cms 3.1.1
Get-simple Getsimple Cms 3.1.2
Get-simple Getsimple Cms 3.2
Get-simple Getsimple Cms 3.2.1
Get-simple Getsimple Cms 3.2.2
Get-simple Getsimple Cms 3.2.3
Get-simple Getsimple Cms 3.3.0
Get-simple Getsimple Cms 3.3.1
Get-simple Getsimple Cms 3.3.2
7.5
CVSSv3
CVE-2014-8722
GetSimple CMS 3.3.4 allows remote malicious users to obtain sensitive information via a direct request to (1) data/users/<username>.xml, (2) backups/users/<username>.xml.bak, (3) data/other/authorization.xml, or (4) data/other/appid.xml.
Get-simple Getsimple Cms 3.3.4
5.3
CVSSv3
CVE-2014-8723
GetSimple CMS 3.3.4 allows remote malicious users to obtain sensitive information via a direct request to (1) plugins/anonymous_data.php or (2) plugins/InnovationPlugin.php, which reveals the installation path in an error message.
Get-simple Getsimple Cms 3.3.4
NA
CVE-2015-5355
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS prior to 3.3.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) post-content or (2) post-title parameter to admin/edit.php.
Get-simple Getsimple Cms
NA
CVE-2015-5356
Cross-site scripting (XSS) vulnerability in admin/filebrowser.php in GetSimple CMS prior to 3.3.6 allows remote malicious users to inject arbitrary web script or HTML via the func parameter.
Get-simple Getsimple Cms
NA
CVE-2014-8790
XML external entity (XXE) vulnerability in admin/api.php in GetSimple CMS 3.1.1 up to and including 3.3.x prior to 3.3.5 Beta 1, when in certain configurations, allows remote malicious users to read arbitrary files via the data parameter.
Get-simple Getsimple Cms 3.3.2
Get-simple Getsimple Cms 3.2
Cagintranetworks Getsimple Cms 3.3.3
Cagintranetworks Getsimple Cms 3.3.4
Get-simple Getsimple Cms 3.1.1
Get-simple Getsimple Cms 3.1.2
Get-simple Getsimple Cms 3.2.1
Get-simple Getsimple Cms 3.2.2
Get-simple Getsimple Cms 3.3.0
Get-simple Getsimple Cms 3.2.3
Get-simple Getsimple Cms 3.3.1
NA
CVE-2014-1603
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) param parameter to admin/load.php or (2) user, (3) email, or (4) name parameter in a Save Settings action to admin/settings.p...
Get-simple Getsimple Cms 3.3.1
1 EDB exploit
NA
CVE-2013-7243
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.1.2 and 3.2.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) post-menu field to edit.php or (2) Display name field to settings.php. NOTE: The Custom Permalink Structure and Ema...
Get-simple Getsimple Cms 3.1.2
Get-simple Getsimple Cms 3.2.3
NA
CVE-2012-6621
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.1, 3.1.2, 3.2.3, and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) Email Address or (2) Custom Permalink Structure fields in admin/settings.php; (3) path par...
Get-simple Getsimple Cms 1.3
Get-simple Getsimple Cms 1.4
Get-simple Getsimple Cms 2.03.1
Get-simple Getsimple Cms 3.0
Get-simple Getsimple Cms
Get-simple Getsimple Cms 1.5
Get-simple Getsimple Cms 1.6
Get-simple Getsimple Cms 3.1
Get-simple Getsimple Cms 3.1.1
Get-simple Getsimple Cms 1.0
Get-simple Getsimple Cms 1.1
Get-simple Getsimple Cms 1.7
Get-simple Getsimple Cms 1.71
Get-simple Getsimple Cms 3.1.2
Get-simple Getsimple Cms 3.2
Get-simple Getsimple Cms 1.2
Get-simple Getsimple Cms 1.25
Get-simple Getsimple Cms 2.0
Get-simple Getsimple Cms 2.01
Get-simple Getsimple Cms 2.03
Get-simple Getsimple Cms 3.2.1
Get-simple Getsimple Cms 3.2.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »