← Back

Simple Cms

simple_cms

Vendor: Phpjabbers • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-53927
1Phpjabbers
1Simple Cms
Dec 27, 2025
Dec 17, 2025
5.1 MEDIUM· v4
5.4 MEDIUM· v3
N/A· v2
PHPJabbers Simple CMS 5.0 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through section name parameters. Attackers can create sections with embedded...Show more
PHPJabbers Simple CMS 5.0 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through section name parameters. Attackers can create sections with embedded JavaScript payloads that will execute when administrators view the sections, potentially enabling client-side code execution.Show less
CVE-2023-53926
1Phpjabbers
1Simple Cms
Dec 24, 2025
Dec 17, 2025
8.7 HIGH· v4
9.8 CRITICAL· v3
N/A· v2
PHPJabbers Simple CMS 5.0 contains a SQL injection vulnerability in the 'column' parameter that allows remote attackers to manipulate database queries. Attackers can inject crafted SQL payloads through the 'column' param...Show more
PHPJabbers Simple CMS 5.0 contains a SQL injection vulnerability in the 'column' parameter that allows remote attackers to manipulate database queries. Attackers can inject crafted SQL payloads through the 'column' parameter in the index.php endpoint to potentially extract or modify database information.Show less