2020-09-01 16:40:11
mitre
PUBLISHED
A Reflected Cross-Site Scripting (XSS) vulnerability in GetSimple CMS v3.3.16, in the admin/index.php login portal webpage, allows remote attackers to execute JavaScript code in the clients browser and harvest login credentials after a client clicks a link, enters credentials, and submits the login form.