Vulnerabilities > CVE-2022-41544 - Unspecified vulnerability in Get-Simple Getsimple CMS 3.3.16

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
get-simple
critical

Summary

GetSimple CMS v3.3.16 was discovered to contain a remote code execution (RCE) vulnerability via the edited_file parameter in admin/theme-edit.php.

Vulnerable Configurations

Part Description Count
Application
Get-Simple
1