Vulnerabilities > GET Simple > Getsimplecms > 3.4.0a

DATE CVE VULNERABILITY TITLE RISK
2023-11-17 CVE-2023-6188 Code Injection vulnerability in Get-Simple Getsimplecms 3.3.16/3.4.0A
A vulnerability was found in GetSimpleCMS 3.3.16/3.4.0a.
network
low complexity
get-simple CWE-94
critical
 9.8
9.8
2023-10-19 CVE-2023-46042 Unspecified vulnerability in Get-Simple Getsimplecms 3.4.0A
An issue in GetSimpleCMS v.3.4.0a allows a remote attacker to execute arbitrary code via a crafted payload to the phpinfo().
network
low complexity
get-simple
critical
 9.8
9.8
2021-08-06 CVE-2020-21353 Cross-site Scripting vulnerability in Get-Simple Getsimplecms 3.4.0A
A stored cross site scripting (XSS) vulnerability in /admin/snippets.php of GetSimple CMS 3.4.0a allows attackers to execute arbitrary web scripts or HTML via crafted payload in the Edit Snippets module.
network
get-simple CWE-79
3.5
3.5