Security Advisory

CVE-2021-29400

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-10 22:30:08

Last updated 2024-08-03 22:02:51

Assigner mitre

State PUBLISHED

Description

A cross-site request forgery (CSRF) vulnerability in the My SMTP Contact v1.1.1 plugin for GetSimple CMS allows remote attackers to change the SMTP settings of the contact forms for the webpages of the CMS after an authenticated admin visits a malicious third-party site.

← Browse all CVEs View on cve.org ↗