Poor cryptographic salt initialization in admin/inc/template_functions.php in GetSimple CMS 3.3.13 allows a network malicious user to escalate privileges to an arbitrary user or conduct CSRF attacks via calculation of a session cookie or CSRF nonce.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cagintranetworks getsimple cms 3.3.13_ |