High severity7.5NVD Advisory· Published Mar 17, 2017· Updated Jun 17, 2026
CVE-2014-8722
CVE-2014-8722
Description
GetSimple CMS 3.3.4 allows remote attackers to obtain sensitive information via a direct request to (1) data/users/.xml, (2) backups/users/.xml.bak, (3) data/other/authorization.xml, or (4) data/other/appid.xml.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:get-simple:getsimple_cms:3.3.4:*:*:*:*:*:*:*
- Range: =3.3.4
Patches
Vulnerability mechanics
References
3- rossmarks.uk/whitepapers/getSimple_cms_3.3.4.txtnvdExploitThird Party Advisory
- rossmarks.uk/portfolio.phpnvdThird Party Advisory
- packetstormsecurity.com/files/162906/GetSimple-CMS-3.3.4-Information-Disclosure.htmlnvd
News mentions
0No linked articles in our index yet.