Security Advisory

CVE-2021-47733

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-23 19:35:44

Last updated 2026-04-07 14:05:51

Assigner VulnCheck

State PUBLISHED

Description

CMSimple 5.4 contains a cross-site scripting vulnerability that allows attackers to bypass input filtering by using HTML to Unicode encoding. Attackers can inject malicious scripts by encoding payloads like )-alert(1)// and execute arbitrary JavaScript when victims interact with delete buttons.

← Browse all CVEs View on cve.org ↗