Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-p3gm-qv6r-wh7x

Опубликовано: 01 фев. 2026
Источник: github
Github: Не прошло ревью
CVSS4: 5.1
CVSS3: 6.4

Описание

Simple CMS 2.1 contains a non-persistent cross-site scripting vulnerability in the preview.php file's id parameter. Attackers can inject malicious script code through a GET request to execute arbitrary scripts and potentially hijack user sessions or perform phishing attacks.

Simple CMS 2.1 contains a non-persistent cross-site scripting vulnerability in the preview.php file's id parameter. Attackers can inject malicious script code through a GET request to execute arbitrary scripts and potentially hijack user sessions or perform phishing attacks.

Ссылки

EPSS

Процентиль: 12%
0.00039
Низкий

5.1 Medium

CVSS4

6.4 Medium

CVSS3

CVE ID

CVE-2021-47919

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2021-47919

CVSS3: 6.4
nvd
7 дней назад

Simple CMS 2.1 contains a non-persistent cross-site scripting vulnerability in the preview.php file's id parameter. Attackers can inject malicious script code through a GET request to execute arbitrary scripts and potentially hijack user sessions or perform phishing attacks.

EPSS

Процентиль: 12%
0.00039
Низкий

5.1 Medium

CVSS4

6.4 Medium

CVSS3

CVE ID

CVE-2021-47919

Дефекты

CWE-79