CVE-2021-47778

Publication date

2026-01-21 17:29:48

Family

VulnCheck

State

PUBLISHED

Description

GetSimple CMS My SMTP Contact Plugin 1.1.2 contains a PHP code injection vulnerability. An authenticated administrator can inject arbitrary PHP code through plugin configuration parameters, leading to remote code execution on the server.