| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-5203 | CMS Made Simple UserGuide Module XML Import class.UserGuideImporterExporter.php _copyFilesToFolder path traversal | - | CMS Made Simple | Medium | 4.7 | 2026-03-31 15:45:09 | Deep Dive |
| CVE-2026-4225 | CMS Made Simple User Management listusers.php cross site scripting | - | CMS Made Simple | Low | 2.4 | 2026-03-16 07:32:08 | Deep Dive |
| CVE-2021-47919 | Simple CMS 2.1 Non-Persistent Cross-Site Scripting via Preview Parameter | Simplephpscripts | Simple CMS | Medium | 6.4 | 2026-02-01 12:15:51 | Deep Dive |
| CVE-2021-47917 | Simple CMS 2.1 Persistent Cross-Site Scripting via User Input Parameters | Simplephpscripts | Simple CMS | Medium | 6.4 | 2026-02-01 12:15:50 | Deep Dive |
| CVE-2021-47918 | Simple CMS 2.1 SQL Injection Vulnerability via Users Module | Simplephpscripts | Simple CMS | High | 8.1 | 2026-02-01 12:15:50 | Deep Dive |
| CVE-2025-15495 | BiggiDroid Simple PHP CMS editsite.php unrestricted upload | BiggiDroid | Simple PHP CMS | Medium | 4.7 | 2026-01-09 17:02:09 | Deep Dive |
| CVE-2025-15263 | BiggiDroid Simple PHP CMS Admin Login login.php sql injection | BiggiDroid | Simple PHP CMS | High | 7.3 | 2025-12-30 18:32:09 | Deep Dive |
| CVE-2025-15262 | BiggiDroid Simple PHP CMS Site Logo edit.php unrestricted upload | BiggiDroid | Simple PHP CMS | Medium | 4.7 | 2025-12-30 18:02:09 | Deep Dive |
| CVE-2025-15169 | BiggiDroid Simple PHP CMS editsite.php sql injection | BiggiDroid | Simple PHP CMS | Medium | 4.7 | 2025-12-29 03:02:09 | Deep Dive |
| CVE-2023-53927 | PHPJabbers Simple CMS 5.0 Stored Cross-Site Scripting via Section Creation | PHPJabbers | Simple CMS | Medium | 5.4 | 2025-12-17 22:44:56 | Deep Dive |
| CVE-2023-53926 | PHPJabbers Simple CMS 5.0 SQL Injection via Column Parameter | PHPJabbers | Simple CMS | Critical | 9.8 | 2025-12-17 22:44:56 | Deep Dive |
| CVE-2025-5153 | CMS Made Simple Design Manager Module cross site scripting | - | CMS Made Simple | Low | 3.5 | 2025-05-25 17:31:05 | Deep Dive |
| CVE-2024-3202 | codelyfe Stupid Simple CMS Login Page excessive authentication | codelyfe | Stupid Simple CMS | Low | 3.7 | 2024-04-02 21:31:04 | Deep Dive |
| CVE-2024-1529 | Cross-site Scripting in CMS Made Simple | CMS Made Simple | CMS Made Simple | High | 7.4 | 2024-03-12 15:25:56 | Deep Dive |
| CVE-2024-1528 | Cross-site Scripting in CMS Made Simple | CMS Made Simple | CMS Made Simple | High | 7.4 | 2024-03-12 15:22:11 | Deep Dive |
| CVE-2024-1527 | Unrestricted Upload of File with Dangerous Type in CMS Made Simple | CMS Made Simple | CMS Made Simple | Critical | 9.8 | 2024-03-12 15:19:53 | Deep Dive |
| CVE-2023-7041 | codelyfe Stupid Simple CMS rename.php path traversal | codelyfe | Stupid Simple CMS | Medium | 5.4 | 2023-12-21 20:00:07 | Deep Dive |
| CVE-2023-7040 | codelyfe Stupid Simple CMS rename.php path traversal | codelyfe | Stupid Simple CMS | Medium | 4.3 | 2023-12-21 19:31:04 | Deep Dive |
| CVE-2023-6907 | codelyfe Stupid Simple CMS Deletion Interface delete.php improper authentication | codelyfe | Stupid Simple CMS | Medium | 5.4 | 2023-12-18 00:31:04 | Deep Dive |
| CVE-2023-6902 | codelyfe Stupid Simple CMS upload.php unrestricted upload | codelyfe | Stupid Simple CMS | Medium | 5.5 | 2023-12-17 15:31:04 | Deep Dive |