First published: Sat Sep 01 2018(Updated: )
There is XSS in GetSimple CMS 3.4.0.9 via the admin/edit.php title field.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Get-simple Getsimple Cms | =3.4.0.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this XSS vulnerability is CVE-2018-16325.
The affected software version is GetSimple CMS 3.4.0.9.
This vulnerability has a severity rating of 6.1, which is considered medium.
An attacker can exploit this vulnerability by injecting malicious script code into the title field on the admin/edit.php page of the GetSimple CMS.
Yes, the fix for this vulnerability is available in the latest version of GetSimple CMS. It is recommended to update to the latest version to mitigate the risk.