SSD Advisory – GetSimple CMS Unauthenticated Remote Code Execution
Vulnerabilities SummaryThe following advisory describes a vulnerability in GetSimple CMS which allows unauthenticated attackers to perform Remote Code Execution.CVECVE-2019-11231CreditAn independent Security Researcher, truerand0m, has reported this vulnerability to SSD Secure Disclosure program.Affected systemsGetSimple CMS version 3.3.15 (Latest at the time of writing this post) and before.Vendor ResponseWe have notified the vendor on the 21/1/2019 and …
SSD Advisory – GetSimple CMS Unauthenticated Remote Code Execution Read More »