VYPR

Getsimple CMS My SMTP Contact

by WordPress

CVEs (2)

  • CVE-2021-47778Jan 21, 2026
    risk 0.00cvss epss 0.01

    GetSimple CMS My SMTP Contact Plugin 1.1.2 contains a PHP code injection vulnerability. An authenticated administrator can inject arbitrary PHP code through plugin configuration parameters, leading to remote code execution on the server.

  • CVE-2021-47830Jan 21, 2026
    risk 0.00cvss epss 0.00

    GetSimple CMS My SMTP Contact Plugin 1.1.1 contains a cross-site request forgery (CSRF) vulnerability. Attackers can craft a malicious webpage that, when visited by an authenticated administrator, can change SMTP configuration settings in the plugin. This may allow unauthorized…