Lucene search
PRIOn knowledge basePRION:CVE-2013-1420HistoryJan 02, 2020 - 9:15 p.m.
Cross site scripting
2020-01-0221:15:00
PRIOn knowledge base
www.prio-n.com
2
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS before 3.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to backup-edit.php; (2) title or (3) menu parameter to edit.php; or (4) path or (5) returnid parameter to filebrowser.php in admin/. NOTE: the path parameter in admin/upload.php vector is already covered by CVE-2012-6621.
| CPE | Name | Operator | Version |
|---|---|---|---|
| getsimple_cms | lt | 3.2.1 |
Related
cvelist
cvelist
cve
cve
nvd
nvd
exploitdb
exploitdb
GetSimple CMS 3.1 admin/pages.php error Parameter Reflected XSS
2012-05-12 00:00:00
GetSimple CMS 3.1 admin/upload.php path Parameter XSS
2012-05-12 00:00:00
GetSimple CMS 3.1 admin/theme.php err Parameter Reflected XSS
2012-05-12 00:00:00
prion
prion
Cross site scripting
2014-01-16 21:55:00
Cross site scripting
2014-01-17 15:18:00
packetstorm
packetstorm
GetSimple CMS 3.1.2 Cross Site Scripting
2013-05-01 00:00:00
zdt
zdt
GetSimple CMS 3.1.2 Cross Site Scripting Vulnerability
2013-05-02 00:00:00
securityvulns
securityvulns
htbridge
htbridge
Multiple Cross-Site Scripting (XSS) vulnerabilities in GetSimple CMS
2013-01-23 00:00:00
openvas
openvas
GetSimple CMS 3.1.x / 3.2.x Multiple Vulnerabilities
2014-01-21 00:00:00