Medium severity6.1NVD Advisory· Published Jun 23, 2021· Updated Jun 17, 2026
CVE-2020-18657
CVE-2020-18657
Description
Cross Site Scripting (XSS) vulnerability in GetSimpleCMS <= 3.3.15 in admin/changedata.php via the redirect_url parameter and the headers_sent function.
Affected products
2- GetSimpleCMS/GetSimpleCMSdescription
- Range: <=3.3.15
Patches
Vulnerability mechanics
References
3- github.com/GetSimpleCMS/GetSimpleCMS/issues/1310nvdExploitThird Party Advisory
- github.com/LoRexxar/CVE_Request/blob/master/getsimplecms%20v3.3.15/getsimplecms_before_v3.3.15.mdnvdRelease NotesThird Party Advisory
- www.seebug.org/vuldb/ssvid-97929nvdThird Party Advisory
News mentions
0No linked articles in our index yet.