CVE-2026-27147 | GetSimple CMS up to 3.3.22 SVG File Parser cross site scripting (GHSA-5gmq-hrcx-6w45)

Inserito da Angelo Barbosa | Feb 21, 2026 | CVE

A vulnerability marked as problematic has been reported in GetSimple CMS up to 3.3.22. Impacted is an unknown function of the component SVG File Parser. Performing a manipulation results in cross site scripting.

This vulnerability was named CVE-2026-27147. The attack may be initiated remotely. There is no available exploit.

CVE-2026-27147 | GetSimple CMS up to 3.3.22 SVG File Parser cross site scripting (GHSA-5gmq-hrcx-6w45)

Post correlati

CVE-2024-9247 | Foxit PDF Reader Annotation out-of-bounds write (ZDI-24-1300)

CVE-2024-7512 | Concrete CMS up to 9.3.2 cross site scripting

CVE-2024-34273 | njwt up to 0.4.0 Parser.prototype.parse prototype pollution

CVE-2025-68337 | Linux Kernel up to 6.12.61/6.17.11/6.18.0 fs/jbd2/transaction.c jbd2_journal_get_create_access allocation of resources