CVE-2023-6188

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-6188

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-6188.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-6188

Published

2023-11-17T18:15:07.150Z

Modified

2025-11-20T12:22:35.709846Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A vulnerability was found in GetSimpleCMS 3.3.16/3.4.0a. It has been rated as critical. This issue affects some unknown processing of the file /admin/theme-edit.php. The manipulation leads to code injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-245735.

References

Affected packages

Git / github.com/getsimplecms/getsimplecms

Affected ranges

Type: GIT
Repo: https://github.com/getsimplecms/getsimplecms
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

e58b89e1efbd7e9cd3c9782c42d7f83ff0e74aad

Affected versions

3.*

3.3.12

3.3.15

v3.*

v3.1.1

v3.1.2

v3.2.0

v3.2.1

v3.2.2

v3.2.3

v3.3.0

v3.3.1

v3.3.14

v3.3.14b1

v3.3.14b2

v3.3.16

v3.3.2

v3.3.3

v3.3.4

v3.3.5

v3.3.6

v3.3.7

v3.3.8

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-6188.json"