Get-simple : Security Vulnerabilities, CVEs, (Code Execution)
An issue in GetSimpleCMS v.3.4.0a allows a remote attacker to execute arbitrary code via a crafted payload to the phpinfo().
Max CVSS
9.8
EPSS Score
0.35%
Published
2023-10-19
Updated
2023-10-25
Cross Site Scripting vulnerability in GetSimpleCMS v.3.4.0a allows a remote attacker to execute arbitrary code via the a crafted payload to the components.php function.
Max CVSS
5.4
EPSS Score
0.05%
Published
2023-10-31
Updated
2023-11-08
GetSimple CMS v3.3.16 was discovered to contain a remote code execution (RCE) vulnerability via the edited_file parameter in admin/theme-edit.php.
Max CVSS
9.8
EPSS Score
1.35%
Published
2022-10-18
Updated
2023-05-24
Remote Code Execution vulnerability in GetSimpleCMS before 3.3.16 in admin/upload.php via phar filess.
Max CVSS
7.2
EPSS Score
0.31%
Published
2021-06-23
Updated
2021-06-28
4 vulnerabilities found