Vulnerabilities (CVE)

Filtered by vendor Simple-cms Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-15564 1 Simple-cms Project 1 Simple Cms 2024-02-28 6.8 MEDIUM 8.8 HIGH
An issue was discovered in daveismyname simple-cms through 2014-03-11. There is a CSRF vulnerability that can delete any page via admin/?delpage=8.
CVE-2018-15565 1 Simple-cms Project 1 Simple Cms 2024-02-28 6.8 MEDIUM 8.8 HIGH
An issue was discovered in daveismyname simple-cms through 2014-03-11. admin/addpage.php does not require authentication for adding a page. This can also be exploited via CSRF.