Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-6621
HistoryJan 16, 2014 - 9:55 p.m.

CVE-2012-6621

2014-01-1621:55:08
CWE-79
[email protected]
web.nvd.nist.gov
20
cve-2012-6621
cross-site scripting
xss
getsimple cms
security vulnerabilities
remote attack

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.3%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.1, 3.1.2, 3.2.3, and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) Email Address or (2) Custom Permalink Structure fields in admin/settings.php; (3) path parameter to admin/upload.php; (4) err parameter to admin/theme.php; (5) error parameter to admin/pages.php; or (6) success or (7) err parameter to admin/index.php.

Affected configurations

NVD
Node
get-simplegetsimple_cmsRange3.2.3
OR
get-simplegetsimple_cmsMatch1.0
OR
get-simplegetsimple_cmsMatch1.1
OR
get-simplegetsimple_cmsMatch1.2
OR
get-simplegetsimple_cmsMatch1.3
OR
get-simplegetsimple_cmsMatch1.4
OR
get-simplegetsimple_cmsMatch1.5
OR
get-simplegetsimple_cmsMatch1.6
OR
get-simplegetsimple_cmsMatch1.7
OR
get-simplegetsimple_cmsMatch1.25
OR
get-simplegetsimple_cmsMatch1.71
OR
get-simplegetsimple_cmsMatch2.0
OR
get-simplegetsimple_cmsMatch2.01
OR
get-simplegetsimple_cmsMatch2.03
OR
get-simplegetsimple_cmsMatch2.03.1
OR
get-simplegetsimple_cmsMatch3.0
OR
get-simplegetsimple_cmsMatch3.1
OR
get-simplegetsimple_cmsMatch3.1.1
OR
get-simplegetsimple_cmsMatch3.1.2
OR
get-simplegetsimple_cmsMatch3.2
OR
get-simplegetsimple_cmsMatch3.2.1
OR
get-simplegetsimple_cmsMatch3.2.2

Related

exploitdb 4
prion 3
nvd 3
cvelist 3
cve 2
openvas 1
exploitdb
exploitdb
GetSimple CMS 3.1 admin/pages.php error Parameter Reflected XSS
2012-05-12 00:00:00
GetSimple CMS 3.1 admin/upload.php path Parameter XSS
2012-05-12 00:00:00
GetSimple CMS 3.1 admin/theme.php err Parameter Reflected XSS
2012-05-12 00:00:00
prion
prion
Cross site scripting
2014-01-16 21:55:00
Cross site scripting
2014-01-17 15:18:00
Cross site scripting
2020-01-02 21:15:00
nvd
nvd
CVE-2012-6621
2014-01-16 21:55:08
CVE-2013-1420
2020-01-02 21:15:12
CVE-2013-7243
2014-01-17 15:18:02
cvelist
cvelist
CVE-2012-6621
2014-01-16 21:00:00
CVE-2013-1420
2020-01-02 20:21:27
CVE-2013-7243
2014-01-17 15:00:00
cve
cve
CVE-2013-1420
2020-01-02 21:15:12
CVE-2013-7243
2014-01-17 15:18:02
openvas
openvas
GetSimple CMS 3.1.x / 3.2.x Multiple Vulnerabilities
2014-01-21 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.3%

JSON
Related for CVE-2012-6621
exploitdb4prion3nvd3cvelist3cve2openvas1