First published: Wed Jun 23 2021(Updated: )
Cross Site Scriptiong (XSS) vulnerability in GetSimpleCMS <=3.3.15 via the timezone parameter to settings.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Get-simple Getsimplecms | <=3.3.15 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-18658 is a Cross Site Scripting (XSS) vulnerability in GetSimpleCMS version 3.3.15 and below.
CVE-2020-18658 has a severity rating of 6.1, which is considered medium.
CVE-2020-18658 affects GetSimpleCMS version 3.3.15 and below through the timezone parameter in settings.php.
To fix CVE-2020-18658, users of GetSimpleCMS should upgrade to a version higher than 3.3.15.
More information about CVE-2020-18658 can be found at the following references: [link1], [link2], [link3].