VYPR

Simple CMS

by Daveismyname

Source repositories

CVEs (2)

  • CVE-2018-15565HigAug 20, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in daveismyname simple-cms through 2014-03-11. admin/addpage.php does not require authentication for adding a page. This can also be exploited via CSRF.

  • CVE-2018-15564HigAug 20, 2018
    risk 0.57cvss 8.8epss 0.00

    An issue was discovered in daveismyname simple-cms through 2014-03-11. There is a CSRF vulnerability that can delete any page via admin/?delpage=8.