A cross-site request forgery (CSRF) vulnerability in the My SMTP Contact v1.1.1 plugin for GetSimple CMS allows remote malicious users to change the SMTP settings of the contact forms for the webpages of the CMS after an authenticated admin visits a malicious third-party site.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netexplorer my smtp contact 1.1.1 |