Unrated severityNVD Advisory· Published Dec 17, 2025· Updated Apr 7, 2026

PHPJabbers Simple CMS 5.0 SQL Injection via Column Parameter

CVE-2023-53926

Description

PHPJabbers Simple CMS 5.0 contains a SQL injection vulnerability in the 'column' parameter that allows remote attackers to manipulate database queries. Attackers can inject crafted SQL payloads through the 'column' parameter in the index.php endpoint to potentially extract or modify database information.

Affected products

Simple Cms/Simple CMSllm-fuzzy
Range: = 5.0
PHPJabbers/Simple CMSv5
Range: 5.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/51416mitreexploit
www.vulncheck.com/advisories/phpjabbers-simple-cms-sql-injection-via-column-parametermitrethird-party-advisory
www.phpjabbers.com/faq.phpmitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000