CVE-2026-27146 | GetSimple CMS up to 3.3.22 Administrative File Upload Endpoint cross-site request forgery (GHSA-26rv-8wpp-q84r)

Inserito da Angelo Barbosa | Feb 21, 2026 | CVE

A vulnerability labeled as problematic has been found in GetSimple CMS up to 3.3.22. This issue affects some unknown processing of the component Administrative File Upload Endpoint. Such manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2026-27146. The attack can be launched remotely. No exploit exists.

CVE-2026-27146 | GetSimple CMS up to 3.3.22 Administrative File Upload Endpoint cross-site request forgery (GHSA-26rv-8wpp-q84r)

Post correlati

CVE-2024-0937 | van_der_Schaar LAB synthcity 0.2.9 PKL File load_from_file deserialization

CVE-2024-49677 | David Cramer Bootstrap Buttons Plugin up to 1.2 on WordPress cross site scripting

CVE-2024-29057 | Microsoft Edge prior 123.0.2420.53 unknown vulnerability

CVE-2024-48930 | cryptocoinjs secp256k1-node up to 3.8.0/4.0.3/5.0.0 publicKeyVerify integrity check